100 matches found
CVE-2025-33135 IBM Financial Transaction Manager for ACH Services and Check Services is impacted by multiple vulnerabilities
IBM Financial Transaction Manager for ACH Services and Check Services for Multi-Platform 3.0.0.0 through 3.0.5.4 Interim Fix 027 IBM Financial Transaction Manager for Check Services v3 Multiplatforms is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to...
CVE-2021-2158
Vulnerability in the Hyperion Financial Management product of Oracle Hyperion component: Task Automation. The supported version that is affected is 11.1.2.4. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion Financial Management...
CVE-2025-13589 Otsuka Information Technology|FMS - Reflected Cross-site Scripting
FMS developed by Otsuka Information Technology has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks...
Microsoft Dynamics 365 信息泄露漏洞
Microsoft Dynamics 365 is a suite of ERP business solutions for multinational organizations from Microsoft USA. It is used for financial management, production management and business intelligence management. An information disclosure vulnerability exists in Microsoft Dynamics 365. An attacker...
Vulnerabilities fixed in Oracle Hyperion
Oracle has fixed several vulnerabilities in Oracle Hyperion, including Hyperion Financial Management and Hyperion Data Relationship Management. The vulnerabilities in Oracle Hyperion allow unauthenticated attackers to gain access to the system, which can lead to unauthorized data access and...
EUVD-2012-1724
Malware in sbrugna...
EUVD-2020-22570
Malware in sbrugna...
EUVD-2025-10044
Malicious code in bioql PyPI...
CVE-2012-1714
Unspecified vulnerability in a TList 6 ActiveX control in Oracle Hyperion Financial Management 11.1.1.4 and 11.1.2.1.104 allows remote attackers to execute arbitrary code via unknown vectors...
CVE-2025-3318
A vulnerability classified as critical was found in KenjFrog 肯尼基蛙 company-financial-management 公司财务管理系统 1.0. Affected by this vulnerability is the function page of the file src/main/java/com/controller/ShangpinleixingController.java. The manipulation of the argument sort leads to sql injection. T...
CVE-2025-3318 Kenj_Frog 肯尼基蛙 company-financial-management 公司财务管理系统 ShangpinleixingController.java page sql injection
A vulnerability classified as critical was found in KenjFrog 肯尼基蛙 company-financial-management 公司财务管理系统 1.0. Affected by this vulnerability is the function page of the file src/main/java/com/controller/ShangpinleixingController.java. The manipulation of the argument sort leads to sql injection. T...
CVE-2025-3318 Kenj_Frog 肯尼基蛙 company-financial-management 公司财务管理系统 ShangpinleixingController.java page sql injection
A vulnerability classified as critical was found in KenjFrog 肯尼基蛙 company-financial-management 公司财务管理系统 1.0. Affected by this vulnerability is the function page of the file src/main/java/com/controller/ShangpinleixingController.java. The manipulation of the argument sort leads to sql injection. T...
CVE-2025-3318
CVE-2025-3318 affects the Kenj_Frog company-financial-management system 1.0, specifically the ShangpinleixingController.java page where the sort argument manipulation enables SQL injection. The vulnerability can be exploited remotely; public disclosure exists. Connected documents consistently ref...
company-financial-management 注入漏洞
company-financial-management is a company financial management system by the individual developer KenjFrog. An injection vulnerability exists in company-financial-management version 1.0, which stems from an incorrect operation of the parameter sort that can lead to SQL injection...
PT-2025-15101 · Kenj Frog · Company-Financial-Management System
Name of the Vulnerable Software and Affected Versions: Kenj Frog company-financial-management system version 1.0 Description: A critical vulnerability was found in the company-financial-management system. The issue affects the function page of the file...
Financials By Coda Cross Site Scripting
Vulnerability type: Cross-site Scripting Vendor: https://www.unit4.com/ Product: Financials by Coda Product site: https://www.unit4.com/fr/products/financial-management-software Affected version: HTTP/2 Host: TIMELINE – 30/10/2023: Vulnerability found – 02/11/2023: Vendor informed – 05/12/2023:...
Financials By Coda Authorization Bypass
Vulnerability type: Incorrect Access Control Vendor: https://www.unit4.com/ Product: Financials by Coda Product site: https://www.unit4.com/fr/products/financial-management-software Affected version: "user" : "", "password" : "", "company" : "", "newPassword" : "newpasswordfortargeteduser",...
Command Execution Vulnerability in UFIDA NC (CNVD-2024-18070)
UFIDA NC is an integrated financial management software designed to provide companies with a comprehensive financial management solution. A command execution vulnerability exists in UFIDA NC, which can be exploited by an attacker to execute arbitrary commands...
Kingdee CloudStar ERP suffers from deserialization vulnerability
Kingdee Cloudstar is a cloud-based enterprise resource management ERP software that provides integrated solutions for financial management, supply chain management, and business process management. A deserialization vulnerability exists in Kingdee CloudStar ERP, which can be exploited by attacker...
Vulnerabilities fixed in Oracle Hyperion
Oracle has fixed vulnerabilities in several Hyperion products. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can result in the following categories of damage: Denial-of-Service DoS. Data manipulation. Remote code execution User rights Access to sensitive...