What is CVE-2026-11435?

CVE-2026-11435 is a high-severity vulnerability, classified under Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection). CVSS score: 7.3/10. Published 2026-06-06.

How severe is CVE-2026-11435?

High severity. CVSS v3 base score is 7.3 out of 10.

CVE-2026-11435

CVE-2026-11435

A security vulnerability has been detected in Jinher OA 1.0. This affects an unknown function of the file nextselectplan.aspx. Such manipulation of the argument httpOID leads to sql injection. The attack may be launched remotely. The explo…

CVSS v3 metric

CVSS v3 base score 7.3 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L.

Weakness classification (CWE)

CWE-74 — Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection)
CWE-89 — SQL Injection

References

cna@vuldb.com
cna@vuldb.com
cna@vuldb.com
cna@vuldb.com
cna@vuldb.com

Frequently asked questions

What is CVE-2026-11435?: CVE-2026-11435 is a high-severity vulnerability, classified under Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection). CVSS score: 7.3/10. Published 2026-06-06.
How severe is CVE-2026-11435?: High severity. CVSS v3 base score is 7.3 out of 10.