CVE-2025-14089

Himool ERP up to 2.2 contains an improper authorization vulnerability in the AdminActionViewSet function update_account (file path: /api/admin/update_account/). The issue allows remote exploitation with publicly available tooling. Multiple sources (NVD, Red Hat, CVE listings, and others) confirm ...

HimoolERP 授权问题漏洞

HimoolERP is an enterprise resource planning management system by Himool Individual Developer. An authorization issue vulnerability exists in HimoolERP 2.2 and earlier versions, which stems from improper authorization of the function updateaccount in the file /api/admin/updateaccount/, which coul...

CVE-2024-46376

Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the updateaccount function of the file rental/adminclass.php...

CVE-2025-2985 code-projects Payroll Management System update_account.php sql injection

A vulnerability was found in code-projects Payroll Management System 1.0. It has been classified as critical. This affects an unknown part of the file updateaccount.php. The manipulation of the argument deduction leads to sql injection. It is possible to initiate the attack remotely. The exploit...

CVE-2024-46376

Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the updateaccount function of the file rental/adminclass.php...