Vulnerabilities > Cysoft168

DATE	CVE	VULNERABILITY TITLE	RISK
2024-08-15	CVE-2024-42678	Cross-site Scripting vulnerability in Cysoft168 Super Easy Enterprise Management System Cross Site Scripting vulnerability in Super easy enterprise management system v.1.0.0 and before allows a local attacker to execute arbitrary code via a crafted script to the /WebSet/DlgGridSet.html component. network low complexity cysoft168 CWE-79	6.1
2024-08-15	CVE-2024-42679	SQL Injection vulnerability in Cysoft168 Super Easy Enterprise Management System SQL Injection vulnerability in Super easy enterprise management system v.1.0.0 and before allows a local attacker to execute arbitrary code via a crafted script to the/ajax/Login.ashx component. local low complexity cysoft168 CWE-89	7.8
2024-08-15	CVE-2024-42680	Path Traversal vulnerability in Cysoft168 Super Easy Enterprise Management System An issue in Super easy enterprise management system v.1.0.0 and before allows a local attacker to obtain the server absolute path by entering a single quotation mark. local low complexity cysoft168 CWE-22	5.5

Vulnerabilities > Cysoft168 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Cysoft168"}]}