Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Inoideas Subscribe
Filtered by product Inoerp
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-28870 1 Inoideas 1 Inoerp 2021-07-21 7.5 HIGH 9.8 CRITICAL
In InoERP 0.7.2, an unauthorized attacker can execute arbitrary code on the server side due to lack of validations in /modules/sys/form_personalization/json_fp.php.
CVE-2019-16894 1 Inoideas 1 Inoerp 2020-08-24 7.5 HIGH 9.8 CRITICAL
download.php in inoERP 4.15 allows SQL injection through insecure deserialization.