Yonyou UFIDA ERP NC V5 0 漏洞列表

共找到 2 个与 Yonyou UFIDA ERP NC V5 0 相关的漏洞

📅 加载漏洞趋势中...

CVE-2025-2709: Yonyou UFIDA ERP-NC V5.0 - Cross-Site Scripting POC

日期: 2025-08-01 | 影响软件: Yonyou UFIDA ERP NC V5 0

Yonyou UFIDA ERP-NC V5.0 is vulnerable to reflected cross-site scripting (XSS) via the key and redirect parameters in login.jsp. Unsanitized user input is reflected in the response, allowing arbitrary JavaScript execution.
CVE-2025-2712: Yonyou UFIDA ERP-NC V5.0 - Cross-Site Scripting POC

日期: 2025-08-01 | 影响软件: Yonyou UFIDA ERP NC V5 0

Yonyou UFIDA ERP-NC V5.0 is vulnerable to reflected cross-site scripting (XSS) via the langcode parameter in /help/systop.jsp and /help/top.jsp. Unsanitized user input is reflected in the response, allowing arbitrary JavaScript execution.