cbcvebase.

Yonyou Ufida Erp-Nc vulnerabilities

4 known vulnerabilities affecting yonyou/ufida_erp-nc.

Total CVEs
4
CISA KEV
0
Public exploits
4
Exploited in wild
1
Severity breakdown
MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2025-2712P1MEDIUMCVSS 6.1ExploitedPoCv5.02025-03-24
CVE-2025-2712 [MEDIUM] CWE-79 CVE-2025-2712: A vulnerability was found in Yonyou UFIDA ERP-NC 5.0. It has been declared as problematic. Affected A vulnerability was found in Yonyou UFIDA ERP-NC 5.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /help/top.jsp. The manipulation of the argument langcode leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The ve
nvd
CVE-2025-2710P3MEDIUMCVSS 6.1PoCv5.02025-03-24
CVE-2025-2710 [MEDIUM] CWE-79 CVE-2025-2710: A vulnerability was found in Yonyou UFIDA ERP-NC 5.0 and classified as problematic. This issue affec A vulnerability was found in Yonyou UFIDA ERP-NC 5.0 and classified as problematic. This issue affects some unknown processing of the file /menu.jsp. The manipulation of the argument flag leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early abou
nvd
CVE-2025-2711P3MEDIUMCVSS 6.1PoCv5.02025-03-24
CVE-2025-2711 [MEDIUM] CWE-79 CVE-2025-2711: A vulnerability was found in Yonyou UFIDA ERP-NC 5.0. It has been classified as problematic. Affecte A vulnerability was found in Yonyou UFIDA ERP-NC 5.0. It has been classified as problematic. Affected is an unknown function of the file /help/systop.jsp. The manipulation of the argument langcode leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was con
nvd
CVE-2025-2709P3MEDIUMCVSS 6.1PoCv5.02025-03-24
CVE-2025-2709 [MEDIUM] CWE-79 CVE-2025-2709: A vulnerability has been found in Yonyou UFIDA ERP-NC 5.0 and classified as problematic. This vulner A vulnerability has been found in Yonyou UFIDA ERP-NC 5.0 and classified as problematic. This vulnerability affects unknown code of the file /login.jsp. The manipulation of the argument key/redirect leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted
nvd
Yonyou Ufida Erp-Nc vulnerabilities | cvebase