Primary

Context

jshERP Access Control Vulnerability in PersonController Allowing Unauthorized Data Access

Vulnerability

A vulnerability in jshERP version 3.5 has been identified, specifically within the PersonController component. This issue arises from incorrect access control, which enables unauthorized attackers to access comprehensive information about handlers by invoking the getAllList method.

Impact

Exploitation of this vulnerability allows unauthorized users to access all handler information across all accounts.

Reproduction

To reproduce this vulnerability, log into an account and navigate to the manager management section. Use a tool like Burp Suite to intercept the request. Change the request path to include the person/getAllList endpoint, remove the X-Access-Token header, and send the request. The response will contain all handler information from all accounts.

Added: Aug 21, 2025, 3:21 PM

Updated: Aug 21, 2025, 3:21 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

0.4

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

0.4

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

jshERP Access Control Vulnerability in PersonController Allowing Unauthorized Data Access

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating