CVE-2025-10091 | Jinher OA up to 1.2 XML ?Type=add xml external entity reference

A vulnerability identified as problematic has been detected in Jinher OA up to 1.2. This affects an unknown function of the file /c6/Jhsoft.Web.projectmanage/ProjectManage/XmlHttp.aspx/?Type=add of the component XML Handler. The manipulation leads to xml external entity reference.

This vulnerability is referenced as CVE-2025-10091. Remote exploitation of the attack is possible. Furthermore, an exploit is available.VulDB Recent EntriesRead More