Vulnerabilities > Abacus

DATE CVE VULNERABILITY TITLE RISK
2022-04-19 CVE-2022-1065 Improper Authentication vulnerability in Abacus products
A vulnerability within the authentication process of Abacus ERP allows a remote attacker to bypass the second authentication factor.
network
low complexity
abacus CWE-287
8.8
2020-03-11 CVE-2019-19381 Cross-site Scripting vulnerability in Abacus 20191120
oauth/oauth2/v1/saml/ in Abacus OAuth Login 2019_01_r4_20191021_0000 before prior to R4 (20.11.2019 Hotfix) allows Reflected Cross Site Scripting (XSS) via an error message.
network
low complexity
abacus CWE-79
6.1