CVE-2025-9931 | Jinher OA 1.0 POST Request login!changePassWord.action Account cross site scripting

Inserito da Angelo Barbosa | Set 3, 2025 | CVE

A vulnerability labeled as problematic has been found in Jinher OA 1.0. Affected is an unknown function of the file /jc6/platform/sys/login!changePassWord.action of the component POST Request Handler. The manipulation of the argument Account results in cross site scripting.

This vulnerability is reported as CVE-2025-9931. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2025-9931 | Jinher OA 1.0 POST Request login!changePassWord.action Account cross site scripting

Post correlati

CVE-2024-11078 | code-projects Job Recruitment 1.0 /register.php e cross site scripting

CVE-2025-24982 | SWIT Activity Log WinterLock Plugin up to 1.2.4 on WordPress cross-site request forgery

CVE-2024-21095 | Oracle Primavera P6 Enterprise Project Portfolio Management Remote Code Execution

CVE-2024-20756 | Adobe Bridge out-of-bounds write (APSB24-15)