Huaxia ERP Retail Management list information disclosure

A vulnerability was found in Huaxia ERP. It has been classified as problematic. This affects an unknown part of the file /depotHead/list of the component Retail Management. The manipulation of the argument search leads to information disclosure. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-212793 was assigned to this vulnerability.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

特权授予不正确

Huaxia ERP 安全漏洞

Huaxia ERP是中国华夏（Huaxia）公司的一个 ERP 软件。 Huaxia ERP 存在安全漏洞，该漏洞源于 Retail Management 组件的未知方法，对 search 参数的操作可以导致信息泄露。

N/A

N/A