Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 165 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-34561 CI4MS: System Settings (Social Media Management) Full Platform Compromise & Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS ci4-cms-erpci4ms Medium 4.7 2026-04-01 21:23:17 Deep Dive
CVE-2026-34560 CI4MS: Logs Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS ci4-cms-erpci4ms Critical 9.1 2026-04-01 21:21:34 Deep Dive
CVE-2026-34559 CI4MS: Blogs Tags Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS ci4-cms-erpci4ms Critical 9.1 2026-04-01 21:20:51 Deep Dive
CVE-2026-34558 CI4MS: Methods Management Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS ci4-cms-erpci4ms Critical 9.1 2026-03-30 20:24:36 Deep Dive
CVE-2026-34557 CI4MS: Permissions Management Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS ci4-cms-erpci4ms Critical 9.1 2026-03-30 20:24:24 Deep Dive
CVE-2026-27599 CI4MS: System Settings (Mail Settings) Full Platform Compromise & Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM XSS ci4-cms-erpci4ms Medium 4.7 2026-03-30 20:24:09 Deep Dive
CVE-2019-25647 PhreeBooks ERP 5.2.3 Remote Code Execution via Image Manager PhreesoftPhreeBooks ERP High 8.8 2026-03-24 11:27:17 Deep Dive
CVE-2019-25630 PhreeBooks ERP 5.2.3 Arbitrary File Upload via Image Manager PhreesoftPhreeBooks ERP High 8.8 2026-03-24 11:27:05 Deep Dive
CVE-2026-4175 Aureus ERP Chatter Message content-text-entry.blade.php cross site scripting AureusERP Low 3.5 2026-03-15 10:32:14 Deep Dive
CVE-2026-31917 WordPress WP ERP plugin <= 1.16.10 - SQL Injection vulnerability weDevsWP ERP 中危 -2026-03-13 11:41:54 Deep Dive
CVE-2026-27687 Missing Authorization check in SAP S/4HANA HCM Portugal and SAP ERP HCM Portugal SAP_SESAP S/4HANA HCM Portugal and SAP ERP HCM Portugal Medium 5.8 2026-03-10 00:18:46 Deep Dive
CVE-2018-25174 ABC ERP 0.6.4 Cross-Site Request Forgery via _configurar_perfil.php Abc-ErpABC ERP Medium 5.3 2026-03-06 12:19:05 Deep Dive
CVE-2026-1198 SQL Injection in SIMPLE.ERP Simple SASimple.ERP--2026-02-26 11:27:19 Deep Dive
CVE-2026-2998 eAI Technologies|ERP - DLL Hijacking eAI TechnologiesERP F2 High 7.8 2026-02-23 02:42:30 Deep Dive
CVE-2019-25440 WebIncorp ERP Every version SQL Injection via product_detail.php WebincorpWebIncorp ERP High 8.2 2026-02-22 13:34:37 Deep Dive
CVE-2019-25452 Dolibarr ERP/CRM 10.0.1 SQL Injection via elemid DolibarrDolibarr ERP/CRM High 7.5 2026-02-22 13:18:26 Deep Dive
CVE-2019-25450 Dolibarr ERP/CRM 10.0.1 SQL Injection via card.php DolibarrDolibarr ERP/CRM High 7.5 2026-02-22 13:18:25 Deep Dive
CVE-2026-2864 feng_ha_ha/megagao ssm-erp/production_ssm PictureController.java pictureDelete path traversal feng_ha_hassm-erp Medium 5.4 2026-02-21 07:32:07 Deep Dive
CVE-2026-2863 feng_ha_ha/megagao ssm-erp/production_ssm FileServiceImpl.java deleteFile path traversal feng_ha_hassm-erp Medium 5.4 2026-02-21 06:02:10 Deep Dive
CVE-2026-2860 feng_ha_ha/megagao ssm-erp/production_ssm EmployeeController.java improper authorization feng_ha_hassm-erp Medium 6.3 2026-02-21 04:32:07 Deep Dive