CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/05/11 8:27 p.m.•6 views

CVE-2026-8221

A flaw has been found in Devs Palace ERP Online up to 4.0.0. This impacts an unknown function of the file /inventory/item-save. This manipulation causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been published and may be used. The vendor was contacte...

4.8CVSS4.2AI score0.0003EPSS

RedhatCVE•added 2026/05/11 8:27 p.m.•6 views

CVE-2026-8220

A vulnerability was detected in Devs Palace ERP Online up to 4.0.0. This affects an unknown function of the file /inventory/customer-save. The manipulation results in cross site scripting. The attack can be executed remotely. The exploit is now public and may be used. The vendor was contacted ear...

4.8CVSS4.2AI score0.0003EPSS

EUVD•added 2026/05/11 3:31 a.m.•8 views

EUVD-2026-29018

A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. This impacts an unknown function of the file /accounts/chart-save. Such manipulation leads to cross site scripting. The attack may be performed from remote. The exploit is publicly available and might be used. The vendor was...

4.8CVSS4.1AI score0.0003EPSS

Exploits0References5

EUVD•added 2026/05/11 3:31 a.m.•11 views

EUVD-2026-29011

A security vulnerability has been detected in Devs Palace ERP Online up to 4.0.0. This vulnerability affects unknown code of the file /accounts/mr-save. Such manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. T...

4.8CVSS4.1AI score0.0003EPSS

Exploits0References5

NVD•added 2026/05/11 2:16 a.m.•8 views

CVE-2026-8262

NVD•added 2026/05/11 2:16 a.m.•7 views

CVE-2026-8256

Vulnrichment•added 2026/05/11 1:45 a.m.•4 views

CVE-2026-8262 Devs Palace ERP Online chart-save cross site scripting

4.8CVSS4.1AI score0.0003EPSS

NVD•added 2026/05/11 12:16 a.m.•8 views

CVE-2026-8254

4.8CVSS0.0001EPSS

NVD•added 2026/05/11 12:16 a.m.•7 views

CVE-2026-8255

A weakness has been identified in Devs Palace ERP Online up to 4.0.0. This affects an unknown part of the file /inventory/addnewcustomer. This manipulation causes cross site scripting. The attack can be initiated remotely. The exploit has been made available to the public and could be used for...

NVD•added 2026/05/11 12:16 a.m.•8 views

CVE-2026-8253

A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. Affected by this vulnerability is an unknown functionality of the file /inventory/purchasesave. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit is publicly available a...

Cvelist•added 2026/05/11 12:0 a.m.•31 views

CVE-2026-8255 Devs Palace ERP Online add_new_customer cross site scripting

ATTACKERKB•added 2026/05/11 12:0 a.m.•5 views

CVE-2026-8255

4.8CVSS4.2AI score0.0003EPSS

Exploits0References4Affected Software1

CNNVD•added 2026/05/11 12:0 a.m.•4 views

Devs Palace ERP Online 跨站脚本漏洞

Devs Palace ERP Online is a cloud-based enterprise resource planning and business management system developed by Devs Palace. Versions of Devs Palace ERP Online 4.0.0 and earlier contained a cross-site scripting vulnerability. This vulnerability stemmed from an unknown function in the...

4.8CVSS5.6AI score0.0001EPSS

Exploits0References2

CNNVD•added 2026/05/11 12:0 a.m.•4 views

Devs Palace ERP Online 跨站脚本漏洞

4.8CVSS5.6AI score0.0003EPSS

CNNVD•added 2026/05/11 12:0 a.m.•5 views

Devs Palace ERP Online 跨站脚本漏洞

4.8CVSS5.6AI score0.0003EPSS