Lucene search
K

68 matches found

CNNVD
CNNVD
added 2026/06/08 12:0 a.m.15 views

jshERP(华夏ERP) 代码问题漏洞

jshERP Huaxia ERP is a domestic ERP system developed by Jishan Hua. Versions of jshERP 3.6 and earlier contained code vulnerabilities. These vulnerabilities stemmed from improper handling of the parameter platformValue in the platformConfig Add endpoint, specifically in the insertPlatformConfig...

5.8CVSS5AI score0.00232EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/12 12:0 a.m.5 views

jshERP 安全漏洞

jshERP Huaxia ERP is a homegrown ERP system by the individual developer of China's Ji Sheng Hua. A security vulnerability exists in jshERP v3.5 and earlier versions, which stems from a stored cross-site scripting vulnerability in the /msg/add endpoint...

4.6CVSS5.8AI score0.00148EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-16285

Malicious code in bioql PyPI...

7.5CVSS5.8AI score0.00739EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-43167

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00591EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-43166

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00536EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-16286

Malicious code in bioql PyPI...

7.5CVSS5.8AI score0.00596EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 9:33 a.m.11 views

CVE-2024-0490

A vulnerability was found in Huaxia ERP up to 3.1. It has been rated as problematic. This issue affects some unknown processing of the file /user/getAllList. The manipulation leads to information disclosure. The attack may be initiated remotely. The exploit has been disclosed to the public and ma...

7.5CVSS7.4AI score0.00739EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:25 a.m.9 views

CVE-2024-0491

A vulnerability classified as problematic has been found in Huaxia ERP up to 3.1. Affected is an unknown function of the file src/main/java/com/jsh/erp/controller/UserController.java. The manipulation leads to weak password recovery. It is possible to launch the attack remotely. Upgrading to...

7.5CVSS7.7AI score0.00596EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:19 a.m.8 views

CVE-2022-3826

A vulnerability was found in Huaxia ERP. It has been classified as problematic. This affects an unknown part of the file /depotHead/list of the component Retail Management. The manipulation of the argument search leads to information disclosure. It is possible to initiate the attack remotely. The...

6.5CVSS6.5AI score0.00591EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:6 p.m.9 views

CVE-2022-3825

A vulnerability was found in Huaxia ERP 2.3 and classified as critical. Affected by this issue is some unknown functionality of the component User Management. The manipulation of the argument login leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the...

6.5CVSS7.3AI score0.00536EPSS
Exploits1References1
NVD
NVD
added 2024/01/13 3:15 p.m.20 views

CVE-2024-0491

A vulnerability classified as problematic has been found in Huaxia ERP up to 3.1. Affected is an unknown function of the file src/main/java/com/jsh/erp/controller/UserController.java. The manipulation leads to weak password recovery. It is possible to launch the attack remotely. Upgrading to...

7.5CVSS6.2AI score0.00596EPSS
Exploits0References3
Prion
Prion
added 2024/01/13 3:15 p.m.14 views

Security feature bypass

A vulnerability classified as problematic has been found in Huaxia ERP up to 3.1. Affected is an unknown function of the file src/main/java/com/jsh/erp/controller/UserController.java. The manipulation leads to weak password recovery. It is possible to launch the attack remotely. Upgrading to...

5CVSS7.3AI score0.00596EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/13 2:31 p.m.16 views

CVE-2024-0491 Huaxia ERP UserController.java password recovery

A vulnerability classified as problematic has been found in Huaxia ERP up to 3.1. Affected is an unknown function of the file src/main/java/com/jsh/erp/controller/UserController.java. The manipulation leads to weak password recovery. It is possible to launch the attack remotely. Upgrading to...

5.3CVSS7.1AI score0.00596EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/01/13 2:31 p.m.29 views

CVE-2024-0491 Huaxia ERP UserController.java password recovery

A vulnerability classified as problematic has been found in Huaxia ERP up to 3.1. Affected is an unknown function of the file src/main/java/com/jsh/erp/controller/UserController.java. The manipulation leads to weak password recovery. It is possible to launch the attack remotely. Upgrading to...

5.3CVSS7.9AI score0.00596EPSS
Exploits0References3
CVE
CVE
added 2024/01/13 2:31 p.m.54 views

CVE-2024-0491

Summary: CVE-2024-0491 affects Huaxia ERP up to version 3.1, targeting the file src/main/java/com/jsh/erp/controller/UserController.java. The issue is described as a vulnerability that enables weak password recovery through manipulation of an unknown function in that controller, with remote explo...

7.5CVSS7.7AI score0.00596EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/01/13 2:31 p.m.13 views

CVE-2024-0491 Huaxia ERP UserController.java password recovery

A vulnerability classified as problematic has been found in Huaxia ERP up to 3.1. Affected is an unknown function of the file src/main/java/com/jsh/erp/controller/UserController.java. The manipulation leads to weak password recovery. It is possible to launch the attack remotely. Upgrading to...

5.3CVSS5.3AI score0.00596EPSS
Exploits0References5
NVD
NVD
added 2024/01/13 2:15 p.m.22 views

CVE-2024-0490

A vulnerability was found in Huaxia ERP up to 3.1. It has been rated as problematic. This issue affects some unknown processing of the file /user/getAllList. The manipulation leads to information disclosure. The attack may be initiated remotely. The exploit has been disclosed to the public and ma...

7.5CVSS5.9AI score0.00739EPSS
Exploits0References3
Prion
Prion
added 2024/01/13 2:15 p.m.10 views

Information disclosure

A vulnerability was found in Huaxia ERP up to 3.1. It has been rated as problematic. This issue affects some unknown processing of the file /user/getAllList. The manipulation leads to information disclosure. The attack may be initiated remotely. The exploit has been disclosed to the public and ma...

5CVSS6.6AI score0.00739EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2024/01/13 2:0 p.m.44 views

CVE-2024-0490

CVE-2024-0490 — Huaxia ERP up to 3.1 : A vulnerability exists in the /user/getAllList handler that allows information disclosure. The issue can be triggered remotely and affects Huaxia ERP deployments prior to 3.2. Several sources corroborate that upgrading to version 3.2 addresses the issue; no ...

7.5CVSS7.3AI score0.00739EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/13 2:0 p.m.4 views

CVE-2024-0490 Huaxia ERP getAllList information disclosure

A vulnerability was found in Huaxia ERP up to 3.1. It has been rated as problematic. This issue affects some unknown processing of the file /user/getAllList. The manipulation leads to information disclosure. The attack may be initiated remotely. The exploit has been disclosed to the public and ma...

5.3CVSS5.9AI score0.00739EPSS
Exploits0References3
Rows per page
Query Builder