Описание
jshERP up to commit fbda24da was discovered to contain an unauthenticated remote code execution (RCE) vulnerability via the jsh_erp function.
Ссылки
- ExploitThird Party Advisory
- ExploitIssue TrackingVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2025-08-14 (исключая)
cpe:2.3:a:jishenghua:jsherp:*:*:*:*:*:*:*:*
EPSS
Процентиль: 37%
0.00158
Низкий
8.2 High
CVSS3
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 8.2
github
4 месяца назад
jshERP up to commit fbda24da was discovered to contain an unauthenticated remote code execution (RCE) vulnerability via the jsh_erp function.
EPSS
Процентиль: 37%
0.00158
Низкий
8.2 High
CVSS3
Дефекты
CWE-77