4 matches found
CVE-2025-2711
creationtimestamp| type| source ---|---|--- 2025-03-24 21:23:29+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8549 2025-03-25 01:05:45+00:00| seen| https://t.me/cvedetector/21010 2025-07-16 13:26:47+00:00| confirmed|...
CVE-2025-2711 Yonyou UFIDA ERP-NC systop.jsp cross site scripting
A vulnerability was found in Yonyou UFIDA ERP-NC 5.0. It has been classified as problematic. Affected is an unknown function of the file /help/systop.jsp. The manipulation of the argument langcode leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-2711
CVE-2025-2711 affects Yonyou UFIDA ERP-NC v5.0. Affected component: the /help/systop.jsp (and /help/top.jsp via langcode). Root cause: manipulation of the langcode input leads to reflected cross-site scripting (XSS). Impact: attackers can remotely exploit to execute arbitrary JavaScript in victim...
CVE-2025-2711 Yonyou UFIDA ERP-NC systop.jsp cross site scripting
A vulnerability was found in Yonyou UFIDA ERP-NC 5.0. It has been classified as problematic. Affected is an unknown function of the file /help/systop.jsp. The manipulation of the argument langcode leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been...