CVE-2025-55368 | jshERP 3.5 RoleController.java access control

Inserito da Angelo Barbosa | Ago 21, 2025 | CVE

A vulnerability identified as critical has been detected in jshERP 3.5. The affected element is an unknown function of the file controllerRoleController.java. Performing manipulation results in improper access controls.

This vulnerability is identified as CVE-2025-55368. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-55368 | jshERP 3.5 RoleController.java access control

Post correlati

CVE-2025-5528 | Social Sharing Plugin Plugin up to 3.3.75 on WordPress heateor_mastodon_share cross site scripting

CVE-2020-3431 | Cisco Small Business RV Router Web-based Management Interface cross site scripting (cisco-sa-sa-rv-routers-xss-K7Z5U6q3)

CVE-2024-40628 | JumpServer up to 3.10.11 path traversal (GHSA-rpf7-g4xh-84v9)

CVE-2024-32993 | Huawei HarmonyOS/EMUI race condition