Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:21 a.m.5 views

CVE-2024-44757

An arbitrary file download vulnerability in the component /Basics/DownloadInpFile of NUS-M9 ERP Management Software v3.0.0 allows attackers to download arbitrary files and access sensitive information via a crafted interface request...

7.5CVSS7.3AI score0.00421EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:21 a.m.6 views

CVE-2024-44759

An arbitrary file download vulnerability in the component /Doc/DownloadFile of NUS-M9 ERP Management Software v3.0.0 allows attackers to download arbitrary files and access sensitive information via a crafted interface request...

7.5CVSS7.3AI score0.00421EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:38 a.m.5 views

CVE-2024-44756

NUS-M9 ERP Management Software v3.0.0 was discovered to contain a SQL injection vulnerability via the usercode parameter at /UserWH/checkLogin...

9.8CVSS9.8AI score0.00452EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 6:36 a.m.6 views

CVE-2024-44758

An arbitrary file upload vulnerability in the component /Production/UploadFile of NUS-M9 ERP Management Software v3.0.0 allows attackers to execute arbitrary code via uploading crafted files...

9.8CVSS9.7AI score0.00681EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/18 12:0 a.m.5 views

PT-2024-31236 · Unknown · Nus-M9 Erp Management

Name of the Vulnerable Software and Affected Versions: NUS-M9 ERP Management Software version 3.0.0 Description: An arbitrary file download issue in the /Basics/DownloadInpFile component allows attackers to download arbitrary files and access sensitive information via a crafted interface request...

7.5CVSS6.5AI score0.00421EPSS
Exploits0References6
CVE
CVE
added 2024/11/18 12:0 a.m.57 views

CVE-2024-44757

CVE-2024-44757 describes an arbitrary file download vulnerability in the component /Basics/DownloadInpFile of NUS-M9 ERP Management Software v3.0.0, exploitable via a crafted interface request that can expose sensitive files. The initial data indicates a high-severity impact (C:H/I:N/A:N, CVSS 3....

7.5CVSS6.6AI score0.00421EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/11/15 12:0 a.m.5 views

PT-2024-31237 · Unknown · Nus-M9 Erp Management

Name of the Vulnerable Software and Affected Versions: NUS-M9 ERP Management Software version 3.0.0 Description: An arbitrary file upload issue in the /Production/UploadFile component allows attackers to execute arbitrary code by uploading crafted files. Recommendations: For NUS-M9 ERP Management...

9.8CVSS7.8AI score0.00681EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/11/15 12:0 a.m.4 views

PT-2024-31238 · Unknown · Nus-M9 Erp Management

Name of the Vulnerable Software and Affected Versions: NUS-M9 ERP Management Software version 3.0.0 Description: An arbitrary file download issue in the /Doc/DownloadFile component allows attackers to download arbitrary files and access sensitive information via a crafted interface request...

7.5CVSS6.6AI score0.00421EPSS
Exploits0References7
Rows per page
Query Builder