|
5511
|
2.4 |
LOW
Network
|
-
|
-
|
A vulnerability was detected in Devs Palace ERP Online up to 4.0.0. This affects an unknown function of the file /inventory/customer-save. The manipulation results in cross site scripting. The attack…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8220
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5512
|
2.4 |
LOW
Network
|
-
|
-
|
A flaw has been found in Devs Palace ERP Online up to 4.0.0. This impacts an unknown function of the file /inventory/item-save. This manipulation causes cross site scripting. The attack is possible t…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8221
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5513
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in Industrial Application Software IAS Canias ERP 8.03. The affected element is the function iasGetServerInfoEvent of the component RMI Interface. Such manipulation lea…
|
CWE-266
CWE-285
Incorrect Privilege Assignment
Improper Authorization
|
CVE-2026-8241
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5514
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in Industrial Application Software IAS Canias ERP 8.03. This affects an unknown function of the component JNLP Deployment Endpoint. Executing a manipulation can lead to…
|
CWE-320
CWE-321
Key Management Errors
Use of Hard-coded Cryptographic Key
|
CVE-2026-8243
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5515
|
3.7 |
LOW
Network
|
-
|
-
|
A vulnerability was found in Industrial Application Software IAS Canias ERP 8.03. The impacted element is the function doAction of the component Login RMI Interface. Performing a manipulation results…
|
CWE-203
CWE-204
Information Exposure Through Discrepancy
Response Discrepancy Information Exposure
|
CVE-2026-8242
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5516
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in Industrial Application Software IAS Canias ERP 8.03. This impacts an unknown function of the component Login RMI Interface. The manipulation of the argument clientVe…
|
CWE-287
Improper Authentication
|
CVE-2026-8244
|
2026-05-12 00:08 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5517
|
2.4 |
LOW
Network
|
-
|
-
|
A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. Affected by this vulnerability is an unknown functionality of the file /inventory/purchase_save. The manipulation leads to cross …
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8253
|
2026-05-12 00:08 |
2026-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5518
|
2.4 |
LOW
Network
|
-
|
-
|
A security flaw has been discovered in Devs Palace ERP Online up to 4.0.0. Affected by this issue is some unknown functionality of the file /inventory/sales_save. The manipulation results in cross si…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8254
|
2026-05-12 00:08 |
2026-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5519
|
2.4 |
LOW
Network
|
-
|
-
|
A weakness has been identified in Devs Palace ERP Online up to 4.0.0. This affects an unknown part of the file /inventory/add_new_customer. This manipulation causes cross site scripting. The attack c…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8255
|
2026-05-12 00:08 |
2026-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5520
|
2.4 |
LOW
Network
|
-
|
-
|
A security vulnerability has been detected in Devs Palace ERP Online up to 4.0.0. This vulnerability affects unknown code of the file /accounts/mr-save. Such manipulation leads to cross site scriptin…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8256
|
2026-05-12 00:08 |
2026-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
