Erp

erp

Vendor: Jerryhanjj • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-29390 1Jerryhanjj 1Erp Apr 22, 2025 Apr 9, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 jerryhanjj ERP 1.0 is vulnerable to SQL Injection in the set_password function in application/controllers/home.php.
CVE-2024-42565 1Jerryhanjj 1Erp Jun 17, 2025 Aug 20, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 ERP commit 44bd04 was discovered to contain a SQL injection vulnerability via the id parameter at /index.php/basedata/contact/delete?action=delete.
CVE-2024-42564 1Jerryhanjj 1Erp Jun 17, 2025 Aug 20, 2024 N/A· v4 7.6 HIGH· v3 N/A· v2 ERP commit 44bd04 was discovered to contain a SQL injection vulnerability via the id parameter at /index.php/basedata/inventory/delete?action=delete.
CVE-2024-42563 1Jerryhanjj 1Erp Jun 5, 2025 Aug 20, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An arbitrary file upload vulnerability in ERP commit 44bd04 allows attackers to execute arbitrary code via uploading a crafted HTML file.