| Description: | | JshERP is an Enterprise Resource Planning (ERP) system developed by Huaxia Jishi, a Chinese software company. ERP systems are integrated software solutions designed to manage and optimize various business processes within an organization, including finance, procurement, production, sales, human resources, and supply chain management. There is a sensitive information leakage vulnerability in JshERP. Malicious attackers can bypass permission restrictions through suffiuses such as.ico and access the getAllList interface to obtain system user information, including account and password. |