Lucene search
K

4 matches found

Nuclei
Nuclei
added 19 hours ago11 views

Yonyou UFIDA ERP-NC V5.0 - Cross-Site Scripting

Yonyou UFIDA ERP-NC V5.0 is vulnerable to reflected cross-site scripting XSS via the langcode parameter in /help/systop.jsp and /help/top.jsp. Unsanitized user input is reflected in the response, allowing arbitrary JavaScript execution. id: CVE-2025-2712 info: name: Yonyou UFIDA ERP-NC V5.0 -...

6.1CVSS6.1AI score0.0079EPSS
Exploits1References1
NVD
NVD
added 2025/03/24 10:15 p.m.29 views

CVE-2025-2712

A vulnerability was found in Yonyou UFIDA ERP-NC 5.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /help/top.jsp. The manipulation of the argument langcode leads to cross site scripting. The attack can be launched remotely. The exploi...

6.1CVSS0.0079EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/03/24 9:31 p.m.6 views

CVE-2025-2712 Yonyou UFIDA ERP-NC top.jsp cross site scripting

A vulnerability was found in Yonyou UFIDA ERP-NC 5.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /help/top.jsp. The manipulation of the argument langcode leads to cross site scripting. The attack can be launched remotely. The exploi...

5.3CVSS6.2AI score0.0079EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/03/24 9:31 p.m.27 views

CVE-2025-2712 Yonyou UFIDA ERP-NC top.jsp cross site scripting

A vulnerability was found in Yonyou UFIDA ERP-NC 5.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /help/top.jsp. The manipulation of the argument langcode leads to cross site scripting. The attack can be launched remotely. The exploi...

5.3CVSS0.0079EPSS
Exploits1References3
Rows per page
Query Builder