Lucene search
IdurarappIdurar
2 matches found
CVE-2023-52265
IDURAR (aka idurar-erp-crm) through 2.0.1 allows stored XSS via a PATCH request with a crafted JSON email template in the /api/email/update data.
5.4CVSS5AI score0.00092EPSS
CVE-2023-27742
IDURAR ERP/CRM v1 was discovered to contain a SQL injection vulnerability via the component /api/login.
9.8CVSS9.7AI score0.00266EPSS