15 matches found
CVE-2025-15170
A security vulnerability has been detected in Advaya Softech GEMS ERP Portal up to 2.1. This affects an unknown part of the file /home.jsp?isError=true of the component Error Message Handler. The manipulation of the argument Message leads to cross site scripting. It is possible to initiate the...
CVE-2025-15170
A security vulnerability has been detected in Advaya Softech GEMS ERP Portal up to 2.1. This affects an unknown part of the file /home.jsp?isError=true of the component Error Message Handler. The manipulation of the argument Message leads to cross site scripting. It is possible to initiate the...
EUVD-2025-205546
A security vulnerability has been detected in Advaya Softech GEMS ERP Portal up to 2.1. This affects an unknown part of the file /home.jsp?isError=true of the component Error Message Handler. The manipulation of the argument Message leads to cross site scripting. It is possible to initiate the...
CVE-2025-15170 Advaya Softech GEMS ERP Portal Error Message home.jsp cross site scripting
A security vulnerability has been detected in Advaya Softech GEMS ERP Portal up to 2.1. This affects an unknown part of the file /home.jsp?isError=true of the component Error Message Handler. The manipulation of the argument Message leads to cross site scripting. It is possible to initiate the...
CVE-2025-15170
Vulnerability summary (CVE-2025-15170) : Advaya Softech GEMS ERP Portal (≤ 2.1) contains a cross-site scripting flaw in the Error Message Handler. The issue arises from improper manipulation of the Message parameter in the file /home.jsp?isError=true, allowing remote exploitation. Public exploit ...
PT-2025-53688
Name of the Vulnerable Software and Affected Versions Advaya Softech GEMS ERP Portal versions up to 2.1 Description A security issue exists in Advaya Softech GEMS ERP Portal. The issue is related to cross site scripting, occurring through manipulation of the Message argument within the Error...
Advaya Softech GEMS ERP Portal 代码注入漏洞
Advaya Softech GEMS ERP Portal is an enterprise resource planning ERP portal system from Advaya Softech India that provides enterprise-level business process management, financial management, and supply chain integration capabilities. A code injection vulnerability exists in Advaya Softech GEMS E...
EUVD-2025-15822
Malicious code in bioql PyPI...
CVE-2025-4863
A vulnerability, which was classified as critical, was found in Advaya Softech GEMS ERP Portal 2.1. This affects an unknown part of the file /studentLogin/studentLogin.action. The manipulation of the argument userId leads to sql injection. It is possible to initiate the attack remotely. The explo...
CVE-2025-4863
A vulnerability, which was classified as critical, was found in Advaya Softech GEMS ERP Portal 2.1. This affects an unknown part of the file /studentLogin/studentLogin.action. The manipulation of the argument userId leads to sql injection. It is possible to initiate the attack remotely. The explo...
CVE-2025-4863 Advaya Softech GEMS ERP Portal studentLogin.action sql injection
A vulnerability, which was classified as critical, was found in Advaya Softech GEMS ERP Portal 2.1. This affects an unknown part of the file /studentLogin/studentLogin.action. The manipulation of the argument userId leads to sql injection. It is possible to initiate the attack remotely. The explo...
CVE-2025-4863 Advaya Softech GEMS ERP Portal studentLogin.action sql injection
A vulnerability, which was classified as critical, was found in Advaya Softech GEMS ERP Portal 2.1. This affects an unknown part of the file /studentLogin/studentLogin.action. The manipulation of the argument userId leads to sql injection. It is possible to initiate the attack remotely. The explo...
CVE-2025-4863
Summary: CVE-2025-4863 affects Advaya Softech GEMS ERP Portal 2.1, targeting the /studentLogin/studentLogin.action endpoint. The vulnerability arises from manipulation of the userId parameter, enabling SQL injection and remote initiation. Public disclosures and PoC materials exist (e.g., GEMS_POC...
PT-2025-21834 · Advaya Softech · Advaya Softech Gems Erp Portal
Name of the Vulnerable Software and Affected Versions: Advaya Softech GEMS ERP Portal version 2.1 Description: A critical issue was found in the software, affecting an unknown part of the file "/studentLogin/studentLogin.action". The manipulation of the userId argument leads to SQL injection. It ...
Advaya Softech GEMS ERP Portal 注入漏洞
Advaya Softech GEMS ERP Portal is an enterprise resource planning ERP portal system from Advaya Softech India that provides enterprise-level business process management, financial management, and supply chain integration capabilities. An injection vulnerability exists in Advaya Softech GEMS ERP...