CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-51743

An issue was discovered in jishenghua JSH_ERP 2.3.1. The /materialCategory/addMaterialCategory endpoint is vulnerable to fastjson deserialization attacks.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.2%

CVSS Severity

CVSS v3 Score 9.8

References

https://blog.hackpax.top/jsh-erp2/
https://gist.github.com/Paxsizy/cd1557aeba8093a8650601c4dbffb6f9
https://gitee.com/jishenghua
https://gitee.com/jishenghua/JSH_ERP

Products affected by CVE-2025-51743

Jishenghua » Jsherp » Version: Any

cpe:2.3:a:jishenghua:jsherp:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-51743

Products

Pricing

Contact Us