{"id":66603,"date":"2025-07-19T18:31:48","date_gmt":"2025-07-19T15:01:48","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2025-7823-jinher-oa-xml-external-entity-reference-vulnerability\/"},"modified":"2025-07-19T18:31:48","modified_gmt":"2025-07-19T15:01:48","slug":"cve-2025-7823-jinher-oa-xml-external-entity-reference-vulnerability","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2025-7823-jinher-oa-xml-external-entity-reference-vulnerability\/","title":{"rendered":"CVE-2025-7823 &#8211; Jinher OA XML External Entity Reference Vulnerability"},"content":{"rendered":"<p><strong>CVE ID : <\/strong>CVE-2025-7823<br \/>\n<br \/>\n<strong>Published : <\/strong> July 19, 2025, 1:15 p.m. | 1\u00a0hour, 32\u00a0minutes ago<br \/>\n<br \/>\n<strong>Description : <\/strong>A vulnerability was found in Jinher OA 1.2. It has been declared as problematic. This vulnerability affects unknown code of the file ProjectScheduleDelete.aspx. The manipulation leads to xml external entity reference. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.<br \/>\n<br \/>\n<strong>Severity:<\/strong> 7.3 | HIGH<br \/>\n<br \/>\nVisit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2025-7823 Published : July 19, 2025, 1:15 p.m. | 1\u00a0hour, 32\u00a0minutes ago Description : A vulnerability was found in Jinher OA 1.2. It has been declared as problematic. This vulnerability affects unknown code of the file ProjectScheduleDelete.aspx. The manipulation leads to xml external entity reference. The attack can be initiated remotely. The &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-66603","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/66603","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=66603"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/66603\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=66603"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=66603"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=66603"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}