CNNVD-202508-2624 Information

CNNVD ID

CNNVD-202508-2624

Related CVE

CVE-2025-55368

• CNNVD Published: 2025-08-21

Description (Chinese)

jshERP（华夏ERP）是中国季圣华个人开发者的一款国产 ERP 系统。 jshERP v3.5版本存在安全漏洞，该漏洞源于RoleController.java组件中的访问控制不当，可能导致修改供应商状态。

Description (English)

Jsherp (Wahsha ERP) is a nationally produced ERP system for Chinese personal developers in Zhi Sanhua. There is a security loophole in version jsherp v3.5, which stems from inadequate access controls in the RoleController.java component, which may lead to modifications to the vendor ’ s status.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-21

Last Modified

2026-02-24

References

https://github.com/jishenghua/jshERP https://github.com/cina666/CVE/blob/main/jshERP/CVE-2025-55368.md http://jsherp.com https://nvd.nist.gov/vuln/detail/CVE-2025-55368