Jsherp · Jsherp · CVE-2023-48894
**Name of the Vulnerable Software and Affected Versions**
jshERP version 3.3
**Description**
The issue allows attackers to obtain sensitive information due to incorrect access control. This is achieved via the `doFilter` function.
**Recommendations**
For jshERP version 3.3, consider restricting access to the `doFilter` function as a temporary workaround until a patch is available.