3 matches found
PT-2024-22547 · Unit4 · Unit4 Financials
Name of the Vulnerable Software and Affected Versions: Unit4 Financials by Coda versions prior to 2023Q4 Description: The issue allows a remote attacker to run arbitrary code via a crafted GET request using the cols parameter. This enables the attacker to potentially escalate privileges...
Unit4 Financials by Coda Cross-Site Scripting Vulnerability
Unit4 Financials by Coda is a financial management software from the US-based Unit4, Inc. A cross-site scripting vulnerability exists in versions prior to 2023Q4 of Unit4 Financials by Coda that stems from vulnerability to cross-site scripting XSS attacks...
Financials By Coda Authorization Bypass
Vulnerability type: Incorrect Access Control Vendor: https://www.unit4.com/ Product: Financials by Coda Product site: https://www.unit4.com/fr/products/financial-management-software Affected version: "user" : "", "password" : "", "company" : "", "newPassword" : "newpasswordfortargeteduser",...