|
1251
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in Industrial Application Software IAS Canias ERP 8.03. This affects an unknown function of the component JNLP Deployment Endpoint. Executing a manipulation can lead to…
Update
|
CWE-320
CWE-321
Key Management Errors
Use of Hard-coded Cryptographic Key
|
CVE-2026-8243
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1252
|
3.7 |
LOW
Network
|
-
|
-
|
A vulnerability was found in Industrial Application Software IAS Canias ERP 8.03. The impacted element is the function doAction of the component Login RMI Interface. Performing a manipulation results…
Update
|
CWE-203
CWE-204
Information Exposure Through Discrepancy
Response Discrepancy Information Exposure
|
CVE-2026-8242
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1253
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in Industrial Application Software IAS Canias ERP 8.03. This impacts an unknown function of the component Login RMI Interface. The manipulation of the argument clientVe…
Update
|
CWE-287
Improper Authentication
|
CVE-2026-8244
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1254
|
2.4 |
LOW
Network
|
-
|
-
|
A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. Affected by this vulnerability is an unknown functionality of the file /inventory/purchase_save. The manipulation leads to cross …
New
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8253
|
2026-05-12 00:08 |
2026-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1255
|
2.4 |
LOW
Network
|
-
|
-
|
A security flaw has been discovered in Devs Palace ERP Online up to 4.0.0. Affected by this issue is some unknown functionality of the file /inventory/sales_save. The manipulation results in cross si…
New
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8254
|
2026-05-12 00:08 |
2026-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1256
|
2.4 |
LOW
Network
|
-
|
-
|
A weakness has been identified in Devs Palace ERP Online up to 4.0.0. This affects an unknown part of the file /inventory/add_new_customer. This manipulation causes cross site scripting. The attack c…
New
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8255
|
2026-05-12 00:08 |
2026-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1257
|
2.4 |
LOW
Network
|
-
|
-
|
A security vulnerability has been detected in Devs Palace ERP Online up to 4.0.0. This vulnerability affects unknown code of the file /accounts/mr-save. Such manipulation leads to cross site scriptin…
New
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8256
|
2026-05-12 00:08 |
2026-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1258
|
2.4 |
LOW
Network
|
-
|
-
|
A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. This impacts an unknown function of the file /accounts/chart-save. Such manipulation leads to cross site scripting. The attack ma…
New
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8262
|
2026-05-12 00:08 |
2026-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1259
|
8.8 |
HIGH
Network
|
cern
|
rucio
|
A SQL injection vulnerability in `FilterEngine.create_sqla_query()` allows any authenticated Rucio user to execute arbitrary SQL against the backend database through the DID search endpoint (`GET /di…
Update
|
CWE-89
SQL Injection
|
CVE-2026-29080
|
2026-05-12 00:07 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1260
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in Wavlink NU516U1 M16U1_V240425. Affected is the function change_wifi_password of the file /cgi-bin/adm.cgi. The manipulation of the argument wl_channel/wl_Pass/Encryp…
Update
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-8188
|
2026-05-12 00:07 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
