CVE-2025-8839 | jshERP up to 3.5 Endpoint addUser improper authorization (Issue 125)

A vulnerability was found in jshERP up to 3.5. It has been rated as critical. This issue affects some unknown processing of the file /jshERP-boot/user/addUser of the component Endpoint. The manipulation leads to improper authorization.

The identification of this vulnerability is CVE-2025-8839. The attack may be initiated remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More