| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-0609 | WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting <= 1.13.1 - Unauthenticated Stored Cross-Site Scripting | wedevs | ERP: Complete HR, Accounting & CRM Suite with WooCommerce CRM Support | High | 7.2 | 2024-03-29 06:44:02 | Deep Dive |
| CVE-2024-0608 | WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting <= 1.13.1 - Authenticated (Subscriber+) SQL Injection | wedevs | ERP: Complete HR, Accounting & CRM Suite with WooCommerce CRM Support | Medium | 6.5 | 2024-03-29 06:44:01 | Deep Dive |
| CVE-2024-0913 | WP ERP <= 1.13.0 - Authenticated (Accounting Manager+) SQL Injection | wedevs | ERP: Complete HR, Accounting & CRM Suite with WooCommerce CRM Support | High | 7.2 | 2024-03-29 06:44:00 | Deep Dive |
| CVE-2023-4539 | Hardcoded password in Comarch ERP XL | Comarch | ERP XL | High | 7.5 | 2024-02-15 08:32:53 | Deep Dive |
| CVE-2023-4538 | Shared Key in Comarch ERP XL | Comarch | ERP XL | Medium | 6.2 | 2024-02-15 08:32:44 | Deep Dive |
| CVE-2023-4537 | Protocol Downgrade in Comarch ERP XL | Comarch | ERP XL | High | 7.4 | 2024-02-15 08:27:08 | Deep Dive |
| CVE-2024-0491 | Huaxia ERP UserController.java password recovery | Huaxia | ERP | Medium | 5.3 | 2024-01-13 14:31:04 | Deep Dive |
| CVE-2024-0490 | Huaxia ERP getAllList information disclosure | Huaxia | ERP | Medium | 5.3 | 2024-01-13 14:00:06 | Deep Dive |
| CVE-2024-21747 | WordPress WP ERP Plugin <= 1.12.8 is vulnerable to SQL Injection | weDevs | WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting | High | 7.6 | 2024-01-08 16:48:10 | Deep Dive |
| CVE-2023-4198 | Dolibarr ERP CRM (<= 17.0.3) Improper Access Control | Dolibarr | Dolibarr ERP CRM | Medium | 6.5 | 2023-11-01 08:01:16 | Deep Dive |
| CVE-2023-4197 | Dolibarr ERP CRM (<= 18.0.1) Improper Input Sanitization Authenticated RCE | Dolibarr | Dolibarr ERP CRM | High | 7.5 | 2023-11-01 07:58:57 | Deep Dive |
| CVE-2023-34008 | WordPress WP ERP Plugin <= 1.12.3 is vulnerable to Cross Site Scripting (XSS) | weDevs | WP ERP | High | 7.1 | 2023-08-30 14:50:26 | Deep Dive |
| CVE-2023-36924 | Log Injection vulnerability in SAP ERP Defense Forces and Public Security | SAP_SE | SAP ERP Defense Forces and Public Security | Medium | 4.9 | 2023-07-11 02:57:27 | Deep Dive |
| CVE-2020-36735 | WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting <= 1.6.3 - Cross-Site Request Forgery Bypass | wedevs | ERP: Complete HR, Accounting & CRM Suite with WooCommerce CRM Support | Medium | 4.3 | 2023-07-01 02:54:24 | Deep Dive |
| CVE-2023-2744 | WP ERP < 1.12.4 - Admin+ SQL Injection | Unknown | WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting | 高危 | - | 2023-06-27 13:17:11 | Deep Dive |
| CVE-2023-2743 | WP ERP < 1.12.4 - Reflected Cross-Site Scripting | Unknown | WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting | 中危 | - | 2023-06-27 13:17:06 | Deep Dive |
| CVE-2023-24528 | SAP ERP 安全漏洞 | SAP | Fiori apps 1.0 for travel management in SAP ERP (My Travel Requests) | Medium | 6.5 | 2023-02-14 03:18:54 | Deep Dive |
| CVE-2022-3944 | jerryhanjj ERP Commodity Management inventory.php uploadImages unrestricted upload | jerryhanjj | ERP | Medium | 6.3 | 2022-11-11 00:00:00 | Deep Dive |
| CVE-2022-3878 | Maxon ERP browse_data sql injection | Maxon | ERP | High | 7.3 | 2022-11-07 00:00:00 | Deep Dive |
| CVE-2022-3825 | Huaxia ERP User Management sql injection | Huaxia | ERP | Medium | 6.3 | 2022-11-02 00:00:00 | Deep Dive |