Vulnerabilities (CVE)

Filtered by vendor Isellerpal Subscribe
Filtered by product Enterprise Resource Management System
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-42676 1 Isellerpal 1 Enterprise Resource Management System 2024-11-18 N/A 8.8 HIGH
File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPostBack component
CVE-2024-42677 1 Isellerpal 1 Enterprise Resource Management System 2024-11-18 N/A 5.5 MEDIUM
An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker to obtain sensitive information via the /nssys/common/filehandle. Aspx component