CVE-2026-12788

MEDIUM 6.3

zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 XML Parser import xml external entity reference

CVSS Score

6.3

EPSS Score

0.0%

EPSS Percentile

0th

A vulnerability was determined in zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 1.0.0. This vulnerability affects unknown code of the file /adpweb/a/base/barcodeDetail/import of the component XML Parser. This manipulation causes xml external entity reference. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.

CWE	CWE-611 CWE-610
Vendor	zhilink 智互联(深圳)科技有限公司
Product	adp application developer platform 应用开发者平台
Published	Jun 21, 2026

Stay Ahead of the Next One

Get instant alerts for zhilink 智互联(深圳)科技有限公司 adp application developer platform 应用开发者平台

Be the first to know when new medium vulnerabilities affecting zhilink 智互联(深圳)科技有限公司 adp application developer platform 应用开发者平台 are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

zhilink 智互联(深圳)科技有限公司 / ADP Application Developer Platform 应用开发者平台

1.0.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

vuldb.com: https://vuldb.com/vuln/372530 vuldb.com: https://vuldb.com/vuln/372530/cti vuldb.com: https://vuldb.com/cve/CVE-2026-12788 vuldb.com: https://vuldb.com/submit/835655 ucn9h68n9289.feishu.cn: https://ucn9h68n9289.feishu.cn/docx/LeLOdhV6mo3clzxstxXcpFzbnjg?from=from_copylink

Credits

🔍 bigbrother_man (VulDB User) VulDB CNA Team