|
1241
|
7.5 |
HIGH
Network
|
google
|
android
|
In Modem IMS, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed.
Update
|
NVD-CWE-noinfo
|
CVE-2025-71254
|
2026-05-12 00:10 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1242
|
7.5 |
HIGH
Network
|
google
|
android
|
In Modem IMS, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed.
Update
|
NVD-CWE-noinfo
|
CVE-2025-71255
|
2026-05-12 00:09 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1243
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in Industrial Application Software IAS Canias ERP 8.03. This affects the function doAction of the component RMI Interface. The manipulation of the argument sessionId results…
Update
|
CWE-287
Improper Authentication
|
CVE-2026-8214
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1244
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in Industrial Application Software IAS Canias ERP 8.03. This vulnerability affects the function iasRequestFileEvent of the component RMI Interface. This manipulation of…
Update
|
CWE-22
Path Traversal
|
CVE-2026-8215
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1245
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was identified in Industrial Application Software IAS Canias ERP 8.03. This issue affects the function iasServerRemoteInterface.doAction of the component Java RMI Session Management. …
Update
|
CWE-287
Improper Authentication
|
CVE-2026-8216
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1246
|
2.4 |
LOW
Network
|
-
|
-
|
A weakness has been identified in Devs Palace ERP Online up to 4.0.0. The affected element is an unknown function of the file /inventory/purchase_return_save. Executing a manipulation can lead to cro…
Update
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8218
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1247
|
2.4 |
LOW
Network
|
-
|
-
|
A security vulnerability has been detected in Devs Palace ERP Online up to 4.0.0. The impacted element is an unknown function of the file /inventory/supplier-save. The manipulation leads to cross sit…
Update
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8219
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1248
|
2.4 |
LOW
Network
|
-
|
-
|
A vulnerability was detected in Devs Palace ERP Online up to 4.0.0. This affects an unknown function of the file /inventory/customer-save. The manipulation results in cross site scripting. The attack…
Update
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8220
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1249
|
2.4 |
LOW
Network
|
-
|
-
|
A flaw has been found in Devs Palace ERP Online up to 4.0.0. This impacts an unknown function of the file /inventory/item-save. This manipulation causes cross site scripting. The attack is possible t…
Update
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8221
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1250
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in Industrial Application Software IAS Canias ERP 8.03. The affected element is the function iasGetServerInfoEvent of the component RMI Interface. Such manipulation lea…
Update
|
CWE-266
CWE-285
Incorrect Privilege Assignment
Improper Authorization
|
CVE-2026-8241
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
