Vulnerabilities (CVE)

Filtered by vendor Cysoft168 Subscribe
Filtered by product Super Easy Enterprise Management System
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-42678 1 Cysoft168 1 Super Easy Enterprise Management System 2024-11-18 N/A 6.1 MEDIUM
Cross Site Scripting vulnerability in Super easy enterprise management system v.1.0.0 and before allows a local attacker to execute arbitrary code via a crafted script to the /WebSet/DlgGridSet.html component.
CVE-2024-42680 1 Cysoft168 1 Super Easy Enterprise Management System 2024-11-15 N/A 5.5 MEDIUM
An issue in Super easy enterprise management system v.1.0.0 and before allows a local attacker to obtain the server absolute path by entering a single quotation mark.
CVE-2024-42679 1 Cysoft168 1 Super Easy Enterprise Management System 2024-09-06 N/A 7.8 HIGH
SQL Injection vulnerability in Super easy enterprise management system v.1.0.0 and before allows a local attacker to execute arbitrary code via a crafted script to the/ajax/Login.ashx component.