4 matches found
EUVD-2025-7986
Malicious code in bioql PyPI...
CVE-2024-8773
SIMPLE.ERP client is vulnerable to MS SQL protocol downgrade request from a server side, what could lead to an unencrypted communication vulnerable to data interception and modification. This issue affect SIMPLE.ERP from 6.20 to 6.30. Only the 6.30 version received a patch [email protected], which make ...
CVE-2024-8774
The CVE-2024-8774 issue affects the SIMPLE.ERP client (versions 6.20–6.30). The root cause is storing the superuser password in a recoverable format, enabling any authenticated SIMPLE.ERP user to escalate privileges to a database administrator. Impact characteristics in the CVSS vector indicate h...
CVE-2024-8773
The CVE-2024-8773 issue affects SIMPLE.ERP clients (versions 6.20–6.30). A server-side MS SQL protocol downgrade can force unencrypted communication, enabling data interception and modification. Only version 6.30 received a patch ([email protected]) to enforce encryption. Versions 6.20 and 6.25 remain u...