cc2024k/CVE

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-7823 ↗	Jul 19, 2025Saturday, 19 July 2025, 13:15	7.3 HIGH	7.5 HIGH
A vulnerability was found in Jinher OA 1.2. It has been declared as problematic. This vulnerability affects unknown code of the file ProjectScheduleDelete.aspx. The manipulation leads to xml external entity reference. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
CVE-2025-7824 ↗	Jul 19, 2025Saturday, 19 July 2025, 13:15	7.3 HIGH	7.5 HIGH
A vulnerability was found in Jinher OA 1.1. It has been rated as problematic. This issue affects some unknown processing of the file XmlHttp.aspx. The manipulation leads to xml external entity reference. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
CVE-2025-7801 ↗	Jul 18, 2025Friday, 18 July 2025, 19:15	7.3 HIGH	7.5 HIGH
A vulnerability has been found in BossSoft CRM 6.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /crm/module/HNDCBas_customPrmSearchDtl.jsp. The manipulation of the argument cstid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.