A vulnerability was found in Jinher OA 2.0. It has been classified as problematic. The impacted element is an unknown function of the file /c6/Jhsoft.Web.module/ToolBar/ManageWord.aspx/?text=GetUrl&style=1. This manipulation causes xml external entity reference.

This vulnerability is handled as CVE-2025-11035. The attack can be initiated remotely. Additionally, an exploit exists.