Login Sign Up

CVE-2025-9669

7.3 HIGH
SQL Injection

📋 TL;DR

CVE-2025-9669 is a SQL injection vulnerability in Jinher OA 1.0's GetTreeDate.aspx file that allows attackers to manipulate database queries via the ID parameter. This affects all organizations using Jinher OA 1.0, enabling potential data theft, modification, or system compromise. Remote exploitation is possible without authentication.

💻 Affected Systems

Products:
  • Jinher OA
Versions: 1.0
Operating Systems: Windows (typically)
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the GetTreeDate.aspx file specifically. Likely affects all installations of Jinher OA 1.0.

📦 What is this software?

Jinher Oa by Jinher

View all CVEs affecting Jinher Oa →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data exfiltration, privilege escalation, or remote code execution on the underlying server.

🟠

Likely Case

Unauthorized data access, modification, or deletion of sensitive information stored in the OA database.

🟢

If Mitigated

Limited impact with proper input validation, parameterized queries, and network segmentation in place.

🌐 Internet-Facing: HIGH - Remote exploitation is possible and public exploit exists.
🏢 Internal Only: HIGH - SQL injection can be exploited from internal networks with similar impact.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit has been publicly disclosed on GitHub. SQL injection via ID parameter manipulation is straightforward.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None found

Restart Required: No

Instructions:

No official patch available. Consider upgrading to a newer version if available, or implement workarounds.

🔧 Temporary Workarounds

Web Application Firewall (WAF) Rules

all

Implement WAF rules to block SQL injection patterns targeting GetTreeDate.aspx

Input Validation Filter

all

Add input validation to sanitize ID parameter before processing

🧯 If You Can't Patch

  • Isolate the Jinher OA system from internet access and restrict internal network access
  • Implement strict network segmentation and monitor all traffic to/from the affected system

🔍 How to Verify

Check if Vulnerable:

Test GetTreeDate.aspx endpoint with SQL injection payloads in ID parameter (e.g., ID=1' OR '1'='1)

Check Version:

Check Jinher OA version in application interface or configuration files

Verify Fix Applied:

Verify that SQL injection attempts no longer succeed and return appropriate error handling

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL queries in application logs
  • Multiple failed login attempts following SQL injection patterns
  • Access to GetTreeDate.aspx with suspicious ID parameters

Network Indicators:

  • HTTP requests to GetTreeDate.aspx with SQL keywords in parameters
  • Unusual database query patterns from the OA server

SIEM Query:

source="web_logs" AND uri="/GetTreeDate.aspx" AND (param="ID" AND value MATCHES "(?i)(union|select|insert|update|delete|drop|exec|--|#|;)")

📊 Metadata

CVE ID: CVE-2025-9669
CVSS v3 Score: 7.3 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
EPSS Score: 0.03% exploit probability (8.4th percentile)
Published: August 29, 2025
Last Updated: October 1, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-9669, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)