CVE-2025-10090 | Jinher OA up to 1.2 GetTreeDate.aspx ID sql injection

A vulnerability categorized as critical has been discovered in Jinher OA up to 1.2. The impacted element is an unknown function of the file /C6/Jhsoft.Web.departments/GetTreeDate.aspx. Executing manipulation of the argument ID can lead to sql injection.

The identification of this vulnerability is CVE-2025-10090. The attack may be launched remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More