ReportizFlow
Filtered by vendor Entab
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-30076 | 1 Entab | 1 Erp | 2024-11-21 | 5.3 Medium |
| ENTAB ERP 1.0 allows attackers to discover users' full names via a brute force attack with a series of student usernames such as s10000 through s20000. There is no rate limiting. | ||||
| CVE-2024-42564 | 1 Entab | 1 Erp | 2024-08-23 | 7.6 High |
| ERP commit 44bd04 was discovered to contain a SQL injection vulnerability via the id parameter at /index.php/basedata/inventory/delete?action=delete. | ||||
Page 1 of 1.