Analyzed
over 1 year
ago.
based on code collected
over 1 year
ago.
Major Versions
click and drag to zoom
Security Vulnerabilities for Version:
Severities:
Type
|
Identifier
|
Related Record |
Severity
|
Date Published
|
Description | Versions Affected |
|---|---|---|---|---|---|
| CVE-2025-46053 | BDSA-2025-4247 | May 15, 2025 | A SQL Injection vulnerability in WebERP v4.15.2 allows attackers to execute arbitrary SQL commands and extract sensitive data by injecting a crafted pa more... |
v4.15.2
|
|
| CVE-2025-46052 | BDSA-2025-4246 | May 15, 2025 | An error-based SQL Injection (SQLi) vulnerability in WebERP v4.15.2 allows attackers to execute arbitrary SQL command and extract sensitive data by inj more... |
v4.15.2
|
|
| BDSA-2025-2670 | Medium | Apr 03, 2025 | webERP is vulnerable to cross site scripting due to improper sanitization of the `Narrative` field in the `ConfirmDispatch_Invoice.php` file. This coul more... |
