EUVD-2026-22150

Due to missing authorization checks in the SAP S/4HANA backend OData Service Manage Reference Structures, an attacker could update and delete child entities via exposed OData services without proper authorization. This vulnerability has a high impact on integrity, while confidentiality and...

SAP S/4HANA OData Service 安全漏洞

The SAP S/4HANA OData Service is an enterprise system data interface and service integration component provided by the German company SAP. There is a security vulnerability in the SAP S/4HANA OData Service. This vulnerability stems from the lack of authorization checks, which may allow attackers ...

CVE-2026-0484 Missing Authorization check in SAP NetWeaver Application Server ABAP and SAP S/4HANA

Due to missing authorization check in SAP NetWeaver Application Server ABAP and SAP S/4HANA, an authenticated attacker could access a specific transaction code and modify the text data in the system. This vulnerability has a high impact on integrity of the application with no effect on the...

SAP S/4 HANA 安全漏洞

SAP S/4 HANA is an intelligent, integrated ERP software for large enterprises from SAP, a German company. A security vulnerability exists in SAP S/4 HANA Private Cloud that stems from a lack of authorization checks and could lead to cross-company code reading sensitive data and modifying document...

CVE-2025-12290

A vulnerability has been found in Sui Shang Information Technology Suishang Enterprise-Level B2B2C Multi-User Mall System 1.0. Affected by this issue is some unknown functionality of the file /i/359. The manipulation of the argument keywords leads to cross site scripting. The attack is possible t...

EUVD-2006-3124

Malware in sbrugna...

ShengQiao Technology St. Joe ERP System 安全漏洞

ShengQiao Technology St. Joe ERP System is an enterprise management software from ShengQiao Technology China. A security vulnerability exists in ShengQiao Technology St. Joe ERP System that stems from insufficient input cleanup and could lead to a SQL injection attack...

jshERP 安全漏洞

jshERP Huaxia ERP is a homegrown ERP system by the personal developer of Ji Sheng Hua in China. A security vulnerability exists in jshERP version v3.5, which stems from improper access control in the PersonController.java component and could lead to access to processor information...

Renwoxing Enterprise Intelligent Management System 安全漏洞

Renwoxing Enterprise Intelligent Management System is an Enterprise Intelligent Management System from Renwoxing, China. A security vulnerability exists in Renwoxing Enterprise Intelligent Management System versions prior to 3.0, which originates from a SQL injection vulnerability in the parid...

Han ERP 安全漏洞

Han ERP is an ERP import/export system developed by Han Personal Developer. A security vulnerability exists in Han ERP, which can be exploited to cause arbitrary code execution by uploading HTML files with malicious code...

CVE-2024-42679

SQL Injection vulnerability in Super easy enterprise management system v.1.0.0 and before allows a local attacker to execute arbitrary code via a crafted script to the/ajax/Login.ashx component...

PT-2024-30101 · Huizhi · Huizhi

Name of the Vulnerable Software and Affected Versions: Huizhi enterprise resource management system versions 1.0 and before Description: The issue allows a remote attacker to execute arbitrary code via the "/nssys/common/Upload.aspx?Action=DNPageAjaxPostBack" component. This is a File Upload...

CVE-2022-3826

A vulnerability was found in Huaxia ERP. It has been classified as problematic. This affects an unknown part of the file /depotHead/list of the component Retail Management. The manipulation of the argument search leads to information disclosure. It is possible to initiate the attack remotely. The...

畅捷通T+安全漏洞

Changjitong T+ is an Internet-based enterprise management system from China's Changjitong Company, featuring business management, order tracking, funding, inventory, and other functions. An unauthorized attacker can upload malicious files through the exposed web service interface of Changjitong T...

CVE-2022-36572

Sinsiu Sinsiu Enterprise Website System v1.1.1.0 was discovered to contain a remote code execution RCE vulnerability via the component /upload/admin.php?/deal/...

Sinsiu Enterprise Website System 安全漏洞

Sinsiu Enterprise Website System is a Sinsiu Enterprise Website System from Sinsiu. A security vulnerability exists in Sinsiu Enterprise Website System version v1.1.1.0, which originates from a Remote Code Execution RCE vulnerability discovered via the component /upload/admin.php?/deal/...

MyuCms 代码注入漏洞

MyuCms is an intelligent customization system developed by ThinkPhp specifically for enterprises. myucms has a remote code execution vulnerability in version v2.2.1, which can be exploited by attackers to cause code execution...

MyuCms 代码问题漏洞

MyuCms is an intelligent customization system developed by ThinkPhp specifically set up for enterprises. myucms has a cross-site request forgery vulnerability that can be exploited by attackers to send unintended requests to the server...

SQL Injection Vulnerability in Qibo Enterprise System

Qibo enterprise system is specifically tailored to the enterprise station, in the original Qibo CMS developed on the basis of the CMS, in addition to the CMS complex functions, increased the enterprise station required by the characteristics of the function. Qibo Enterprise System has a SQL...

Command Execution Vulnerability in Youdot Enterprise Website Management System

"Friends point enterprise website management system" set of computer websites, mobile websites, micro letter, APP, small programs in one, shared space, data automatic synchronization, is the domestic open source five stations in one excellent solution. You point enterprise website management...