Lucene search
K

100 matches found

Vulnrichment
Vulnrichment
added 2026/02/17 9:37 p.m.6 views

CVE-2025-33135 IBM Financial Transaction Manager for ACH Services and Check Services is impacted by multiple vulnerabilities

IBM Financial Transaction Manager for ACH Services and Check Services for Multi-Platform 3.0.0.0 through 3.0.5.4 Interim Fix 027 IBM Financial Transaction Manager for Check Services v3 Multiplatforms is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to...

6.1CVSS5.1AI score0.00172EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:26 a.m.5 views

CVE-2021-2158

Vulnerability in the Hyperion Financial Management product of Oracle Hyperion component: Task Automation. The supported version that is affected is 11.1.2.4. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion Financial Management...

4.6CVSS4.8AI score0.00582EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/24 3:9 a.m.11 views

CVE-2025-13589 Otsuka Information Technology|FMS - Reflected Cross-site Scripting

FMS developed by Otsuka Information Technology has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks...

5.1CVSS0.00386EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/11 12:0 a.m.4 views

Microsoft Dynamics 365 信息泄露漏洞

Microsoft Dynamics 365 is a suite of ERP business solutions for multinational organizations from Microsoft USA. It is used for financial management, production management and business intelligence management. An information disclosure vulnerability exists in Microsoft Dynamics 365. An attacker...

6.5CVSS5AI score0.00865EPSS
Exploits0References1
NCSC
NCSC
added 2025/10/23 1:49 p.m.11 views

Vulnerabilities fixed in Oracle Hyperion

Oracle has fixed several vulnerabilities in Oracle Hyperion, including Hyperion Financial Management and Hyperion Data Relationship Management. The vulnerabilities in Oracle Hyperion allow unauthenticated attackers to gain access to the system, which can lead to unauthorized data access and...

9.8CVSS7.3AI score0.63258EPSS
Exploits3References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2012-1724

Malware in sbrugna...

10CVSS6.4AI score0.03573EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-22570

Malware in sbrugna...

4.2CVSS4.9AI score0.0083EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-10044

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00269EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/22 4:6 a.m.8 views

CVE-2012-1714

Unspecified vulnerability in a TList 6 ActiveX control in Oracle Hyperion Financial Management 11.1.1.4 and 11.1.2.1.104 allows remote attackers to execute arbitrary code via unknown vectors...

10CVSS7.7AI score0.03573EPSS
Exploits0References1
NVD
NVD
added 2025/04/06 2:15 p.m.13 views

CVE-2025-3318

A vulnerability classified as critical was found in KenjFrog 肯尼基蛙 company-financial-management 公司财务管理系统 1.0. Affected by this vulnerability is the function page of the file src/main/java/com/controller/ShangpinleixingController.java. The manipulation of the argument sort leads to sql injection. T...

6.5CVSS0.00269EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/04/06 2:0 p.m.28 views

CVE-2025-3318 Kenj_Frog 肯尼基蛙 company-financial-management 公司财务管理系统 ShangpinleixingController.java page sql injection

A vulnerability classified as critical was found in KenjFrog 肯尼基蛙 company-financial-management 公司财务管理系统 1.0. Affected by this vulnerability is the function page of the file src/main/java/com/controller/ShangpinleixingController.java. The manipulation of the argument sort leads to sql injection. T...

6.5CVSS0.00269EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/04/06 2:0 p.m.6 views

CVE-2025-3318 Kenj_Frog 肯尼基蛙 company-financial-management 公司财务管理系统 ShangpinleixingController.java page sql injection

A vulnerability classified as critical was found in KenjFrog 肯尼基蛙 company-financial-management 公司财务管理系统 1.0. Affected by this vulnerability is the function page of the file src/main/java/com/controller/ShangpinleixingController.java. The manipulation of the argument sort leads to sql injection. T...

6.5CVSS7.4AI score0.00269EPSS
Exploits1References3
CVE
CVE
added 2025/04/06 2:0 p.m.68 views

CVE-2025-3318

CVE-2025-3318 affects the Kenj_Frog company-financial-management system 1.0, specifically the ShangpinleixingController.java page where the sort argument manipulation enables SQL injection. The vulnerability can be exploited remotely; public disclosure exists. Connected documents consistently ref...

6.5CVSS6.8AI score0.00269EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2025/04/06 12:0 a.m.4 views

company-financial-management 注入漏洞

company-financial-management is a company financial management system by the individual developer KenjFrog. An injection vulnerability exists in company-financial-management version 1.0, which stems from an incorrect operation of the parameter sort that can lead to SQL injection...

6.5CVSS7.1AI score0.00269EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/04/06 12:0 a.m.4 views

PT-2025-15101 · Kenj Frog · Company-Financial-Management System

Name of the Vulnerable Software and Affected Versions: Kenj Frog company-financial-management system version 1.0 Description: A critical vulnerability was found in the company-financial-management system. The issue affects the function page of the file...

6.5CVSS6.8AI score0.00269EPSS
Exploits1References7
Packet Storm
Packet Storm
added 2024/03/15 12:0 a.m.387 views

Financials By Coda Cross Site Scripting

Vulnerability type: Cross-site Scripting Vendor: https://www.unit4.com/ Product: Financials by Coda Product site: https://www.unit4.com/fr/products/financial-management-software Affected version: HTTP/2 Host: TIMELINE – 30/10/2023: Vulnerability found – 02/11/2023: Vendor informed – 05/12/2023:...

7.4AI score0.01791EPSS
Exploits1
Packet Storm
Packet Storm
added 2024/03/15 12:0 a.m.338 views

Financials By Coda Authorization Bypass

Vulnerability type: Incorrect Access Control Vendor: https://www.unit4.com/ Product: Financials by Coda Product site: https://www.unit4.com/fr/products/financial-management-software Affected version: "user" : "", "password" : "", "company" : "", "newPassword" : "newpasswordfortargeteduser",...

7.4AI score0.0073EPSS
Exploits2
CNVD
CNVD
added 2024/03/08 12:0 a.m.26 views

Command Execution Vulnerability in UFIDA NC (CNVD-2024-18070)

UFIDA NC is an integrated financial management software designed to provide companies with a comprehensive financial management solution. A command execution vulnerability exists in UFIDA NC, which can be exploited by an attacker to execute arbitrary commands...

7.8AI score
Exploits0
CNVD
CNVD
added 2024/02/02 12:0 a.m.45 views

Kingdee CloudStar ERP suffers from deserialization vulnerability

Kingdee Cloudstar is a cloud-based enterprise resource management ERP software that provides integrated solutions for financial management, supply chain management, and business process management. A deserialization vulnerability exists in Kingdee CloudStar ERP, which can be exploited by attacker...

7.8AI score
Exploits0
NCSC
NCSC
added 2024/01/18 12:0 a.m.14 views

Vulnerabilities fixed in Oracle Hyperion

Oracle has fixed vulnerabilities in several Hyperion products. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can result in the following categories of damage: Denial-of-Service DoS. Data manipulation. Remote code execution User rights Access to sensitive...

9.8CVSS8.2AI score0.80819EPSS
Exploits20
Rows per page
Query Builder