CVE-2025-7823 – Jinher OA XML External Entity Reference Vulnerability

July 19, 2025

CVE ID : CVE-2025-7823

Published : July 19, 2025, 1:15 p.m. | 10 hours, 38 minutes ago

Description : A vulnerability was found in Jinher OA 1.2. It has been declared as problematic. This vulnerability affects unknown code of the file ProjectScheduleDelete.aspx. The manipulation leads to xml external entity reference. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-7824 – Jinher OA XML External Entity Reference (XXE) Vulnerability

Next Article CVE-2025-7819 – PHPGurukul Apartment Visitors Management System Cross-Site Scripting

Highlights

CVE-2025-24271 – Apple AirPlay Unauthenticated Access Vulnerability

April 29, 2025

CVE ID : CVE-2025-24271

Published : April 29, 2025, 3:15 a.m. | 3 hours, 40 minutes ago

Description : An access issue was addressed with improved access restrictions. This issue is fixed in macOS Sequoia 15.4, tvOS 18.4, macOS Ventura 13.7.5, iPadOS 17.7.6, macOS Sonoma 14.7.5, iOS 18.4 and iPadOS 18.4, visionOS 2.4. An unauthenticated user on the same network as a signed-in Mac could send it AirPlay commands without pairing.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

In-House vs. Outsource Node.js Development Teams: 9 Key Differences for the C-Suite (2025)

Why Non-Native Content Designers Improve Global UX

DevOps won’t scale without platform engineering and here’s why your teams are still stuck

This week in AI dev tools: Slack’s enterprise search, Claude Code’s analytics dashboard, and more (July 18, 2025)

DistroWatch Weekly, Issue 1131

I ditched my Bluetooth speakers for this slick turntable – and it’s more practical than I thought

This split keyboard offers deep customization – if you’re willing to go all in

I spoke with an AI version of myself, thanks to Hume’s free tool – how to try it

The details of TC39’s last meeting

The details of TC39’s last meeting

Simple wrapper for Chrome’s built-in local LLM (Gemini Nano)

Online Examination System using PHP and MySQL

Windows 11 tests “shared audio” to play music via multiple devices, new taskbar animations

Windows 11 tests “shared audio” to play music via multiple devices, new taskbar animations

WhatsApp for Windows 11 is switching back to Chromium web wrapper from UWP/native

DistroWatch Weekly, Issue 1131

CVE-2025-7823 – Jinher OA XML External Entity Reference Vulnerability

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

Best AI Tools to Book More Meetings in 2025

Carmakers Balk at Apple’s Dashboard Takeover with New CarPlay Ultra

Le notizie minori del mondo GNU/Linux e dintorni della settimana nr 26/2025

96% of IT pros say AI agents are a security risk, but they’re deploying them anyway

CVE-2025-24271 – Apple AirPlay Unauthenticated Access Vulnerability

How to Create Documentation with docs.page – A Beginner’s Tutorial

CVE-2025-4448 – D-Link DIR-619L Remote Buffer Overflow Vulnerability

CVE-2025-23254 – NVIDIA TensorRT-LLM Python Executor Code Execution and Data Tampering Vulnerability

CVE-2025-7823 – Jinher OA XML External Entity Reference Vulnerability

Related Posts