← Back

Isellerpal

isellerpal

2 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Enterprise Resource Management System
enterprise_resource_management_system
2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-42677
1Isellerpal
1Enterprise Resource Management System
Nov 18, 2024
Aug 15, 2024
N/A· v4
5.5 MEDIUM· v3
N/A· v2
An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker to obtain sensitive information via the /nssys/common/filehandle. Aspx component
CVE-2024-42676
1Isellerpal
1Enterprise Resource Management System
Nov 18, 2024
Aug 15, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPostBack component