4 matches found
CVE-2014-4312
CVE-2014-4312 affects Epicor Enterprise 7.4 prior to FS74SP6_HotfixTL054181. The issue comprises multiple cross-site scripting (XSS) vectors that allow remote attackers to inject arbitrary script/HTML via several parameters and UI fields (Notes in Order details, Description in Order to consume, F...
Epicor Enterprise 7.4 - Multiple Vulnerabilities
Epicor suffers from cross site scripting and password disclosure vulnerabilities. "Epicor Enterprise vulnerabilities" - Affected vendor: Epicor Software Corporation - Affected system: Epicor Enterprise - Version 7.4 - Vendor disclosure date: May 13th, 2014 - Public disclosure date: September 30th...
Epicor Enterprise 7.4 - Multiple Vulnerabilities
"Epicor Enterprise vulnerabilities" - Affected vendor: Epicor Software Corporation - Affected system: Epicor Enterprise - Version 7.4 - Vendor disclosure date: May 13th, 2014 - Public disclosure date: September 30th, 2014 - Status: Fixed - Associated CVEs: 1 CVE-2014-4311 Password values not mask...
Epicor Password Disclosure / Cross Site Scripting
"Epicor Enterprise vulnerabilities" - Affected vendor: Epicor Software Corporation - Affected system: Epicor Enterprise - Version 7.4 - Vendor disclosure date: May 13th, 2014 - Public disclosure date: September 30th, 2014 - Status: Fixed - Associated CVEs: 1 CVE-2014-4311 Password values not mask...