CNNVD-202508-2623 Information

CNNVD ID

CNNVD-202508-2623

Related CVE

CVE-2025-55370

• CNNVD Published: 2025-08-21

Description (Chinese)

jshERP（华夏ERP）是中国季圣华个人开发者的一款国产 ERP 系统。 jshERP v3.5版本存在安全漏洞，该漏洞源于ResourceController.java组件中的访问控制不当，可能导致获取ID数据。

Description (English)

Jsherp (Wahsha ERP) is a nationally produced ERP system for Chinese personal developers in Zhi Sanhua. There is a security loophole in jsherp v3.5, which stems from inappropriate access controls in the ResourceController.java component, which may lead to the acquisition of ID data.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-21

Last Modified

2026-02-24

References

https://github.com/jishenghua/jshERP https://github.com/cina666/CVE/blob/main/jshERP/%E8%B6%8A%E6%9D%83%E8%8E%B7%E5%8F%96%E4%BB%BB%E6%84%8F%E8%B4%A6%E5%8F%B7%E4%BF%A1%E6%81%AF%E5%AE%9E%E7%8E%B0%E4%BB%BB%E6%84%8F%E7%99%BB%E5%BD%95.md http://jsherp.com https://nvd.nist.gov/vuln/detail/CVE-2025-55370