Cysoft168: >> Super Easy Enterprise Management System Security Vulnerabilities
SQL Injection vulnerability in Super easy enterprise management system v.1.0.0 and before allows a local attacker to execute arbitrary code via a crafted script to the/ajax/Login.ashx component.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-08-15
An issue in Super easy enterprise management system v.1.0.0 and before allows a local attacker to obtain the server absolute path by entering a single quotation mark.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-08-15
Cross Site Scripting vulnerability in Super easy enterprise management system v.1.0.0 and before allows a local attacker to execute arbitrary code via a crafted script to the /WebSet/DlgGridSet.html component.
CVSS Score
6.1
EPSS Score
0.002
Published
2024-08-15