Lucene search
K

8 matches found

Vulnrichment
Vulnrichment
added 2026/02/11 12:19 p.m.4 views

CVE-2025-8025 Improper Access Control in Dinosoft Business Solutions' Dinosoft ERP

Missing Authentication for Critical Function, Improper Access Control vulnerability in Dinosoft Business Solutions Dinosoft ERP allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Dinosoft ERP: from 3.0.1 through 11022026. NOTE: The vendor was contacted early about...

9.8CVSS5.4AI score0.00513EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.7 views

Dinosoft ERP 访问控制错误漏洞

Dinosoft ERP is an enterprise resource planning platform developed by the Turkish company Dinosoft. Versions of Dinosoft ERP from 3.0.1 up to 11022026 contained a security vulnerability related to access control. This vulnerability stemmed from the lack of authentication for critical functions an...

9.8CVSS5.8AI score0.00513EPSS
Exploits0References1
OSV
OSV
added 2026/02/03 10:16 p.m.4 views

CVE-2020-37090

School ERP Pro 1.0 contains a file upload vulnerability that allows students to upload arbitrary PHP files to the messaging system. Attackers can upload malicious PHP scripts through the message attachment feature, enabling remote code execution on the server...

9.8CVSS6.4AI score0.00773EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2025/10/24 8:32 a.m.6 views

CVE-2025-11253

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Aksis Technology Inc. Netty ERP allows SQL Injection. This issue affects Netty ERP: before V.1.1000...

9.8CVSS5.8AI score0.00395EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/03/11 12:0 a.m.3 views

SAP S/4HANA 安全漏洞

SAP S/4HANA is an enterprise resource management software based on the SAP HANA in-memory database system from SAP, Germany. A security vulnerability exists in SAP S/4HANA that stems from bypassing a functionality restriction that could result in uploading files to a reverse bank statement...

4.3CVSS6.6AI score0.00252EPSS
Exploits0References5
OSV
OSV
added 2022/01/14 8:15 p.m.4 views

CVE-2022-22530

The F0743 Create Single Payment application of SAP S/4HANA - versions 100, 101, 102, 103, 104, 105, 106, does not check uploaded or downloaded files. This allows an attacker with basic user rights to inject dangerous content or malicious code which could result in critical information being...

8.1CVSS5.8AI score0.00935EPSS
Exploits0References2
CNVD
CNVD
added 2020/04/24 12:0 a.m.2 views

Unspecified Vulnerability in SAP ERP and S/4 HANA

SAP HANA and SAP ERP HCM are both products of SAP.SAP HANA is a high-performance real-time data analysis platform. The platform provides data query functions to support users to query real-time business data query and analysis.SAP ERP HCM is a set of enterprise human resource management solutions...

5.5CVSS6.7AI score0.00654EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/01/17 12:0 a.m.4 views

The vulnerability of the Enterprise Resource Management System “Galaktika ERP” is related to deficiencies in the implementation of the browser interaction protocol and the IIS service, allowing a hacker to execute arbitrary code.

The vulnerability of the GALAXY ERP resource management system is related to deficiencies in the implementation of the browser interaction protocol and the IIS service of GALAXY ERP. Exploiting this vulnerability allows an attacker to execute arbitrary JavaScript code in the client browser when t...

5.4CVSS5.9AI score
Exploits0Affected Software1
Rows per page
Query Builder