CVE-2025-55367 | jshERP 3.5 SupplierController.java access control

Inserito da Angelo Barbosa | Ago 21, 2025 | CVE

A vulnerability categorized as critical has been discovered in jshERP 3.5. Impacted is an unknown function of the file controllerSupplierController.java. Such manipulation leads to improper access controls.

This vulnerability is referenced as CVE-2025-55367. It is possible to launch the attack remotely. No exploit is available.

CVE-2025-55367 | jshERP 3.5 SupplierController.java access control

Post correlati

CVE-2023-29495 | Intel NUC BIOS prior IN0048 input validation (intel-sa-01009)

CVE-2023-51135 | TOTOLINK X2000R Gh 1.0.0-B20230221.0948.web formPasswordSetup stack-based overflow

CVE-2024-9319 | SourceCodester Online Timesheet App 1.0 delete-timesheet.php timesheet sql injection

CVE-2024-45823 | Rockwell Automation FactoryTalk Batch View 2.01.00 improper authentication