Filtered by vendor Isellerpal Subscriptions
Filtered by product Enterprise Resource Management System Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-42676 2 Isellerpal, Shenzhen Huizhi Software Development 2 Enterprise Resource Management System, Enterprise Resource Management System 2024-11-18 8.8 High
File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPostBack component
CVE-2024-42677 1 Isellerpal 1 Enterprise Resource Management System 2024-11-18 5.5 Medium
An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker to obtain sensitive information via the /nssys/common/filehandle. Aspx component