|
2591
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in JeecgBoot up to 3.9.1. The affected element is an unknown function of the file jeecg-module-system/jeecg-system-biz/src/main/java/org/jeecg/modules/system/controller/C…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8195
|
2026-05-12 00:11 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2592
|
3.7 |
LOW
Network
|
-
|
-
|
A flaw has been found in JeecgBoot 3.9.1. The impacted element is an unknown function of the file jeecg-module-system/jeecg-system-biz/src/main/java/org/jeecg/modules/system/controller/LoginControlle…
|
CWE-285
CWE-639
Improper Authorization
Authorization Bypass Through User-Controlled Key
|
CVE-2026-8196
|
2026-05-12 00:11 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2593
|
7.5 |
HIGH
Network
|
google
|
android
|
In Modem IMS, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed.
|
NVD-CWE-noinfo
|
CVE-2025-71254
|
2026-05-12 00:10 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2594
|
7.5 |
HIGH
Network
|
google
|
android
|
In Modem IMS, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed.
|
NVD-CWE-noinfo
|
CVE-2025-71255
|
2026-05-12 00:09 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2595
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in Industrial Application Software IAS Canias ERP 8.03. This affects the function doAction of the component RMI Interface. The manipulation of the argument sessionId results…
|
CWE-287
Improper Authentication
|
CVE-2026-8214
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2596
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in Industrial Application Software IAS Canias ERP 8.03. This vulnerability affects the function iasRequestFileEvent of the component RMI Interface. This manipulation of…
|
CWE-22
Path Traversal
|
CVE-2026-8215
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2597
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was identified in Industrial Application Software IAS Canias ERP 8.03. This issue affects the function iasServerRemoteInterface.doAction of the component Java RMI Session Management. …
|
CWE-287
Improper Authentication
|
CVE-2026-8216
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2598
|
2.4 |
LOW
Network
|
-
|
-
|
A weakness has been identified in Devs Palace ERP Online up to 4.0.0. The affected element is an unknown function of the file /inventory/purchase_return_save. Executing a manipulation can lead to cro…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8218
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2599
|
2.4 |
LOW
Network
|
-
|
-
|
A security vulnerability has been detected in Devs Palace ERP Online up to 4.0.0. The impacted element is an unknown function of the file /inventory/supplier-save. The manipulation leads to cross sit…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8219
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2600
|
2.4 |
LOW
Network
|
-
|
-
|
A vulnerability was detected in Devs Palace ERP Online up to 4.0.0. This affects an unknown function of the file /inventory/customer-save. The manipulation results in cross site scripting. The attack…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8220
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
