2025-08-21 00:00:00
mitre
PUBLISHED
Incorrect access control in the component controllerResourceController.java of jshERP v3.5 allows unauthorized attackers to obtain all the corresponding ID data by modifying the ID value.