| Description: | | The Jinher OA C6 platform is an enterprise management software launched by Jinhe Software Company that integrates multiple office automation functions. It aims to improve the office efficiency and management level of enterprises by providing comprehensive information solutions. There is an SQL injection vulnerability in its jQueryUploadify.ashx endpoint, which allows attackers to execute malicious SQL code, potentially leading to data leaks, data corruption, service interruptions, and even complete control of the database server. |