Inoideas Inoerp

3 CVEs affecting Inoideas Inoerp. Latest disclosed: 2026-02-11. Critical: 2, High: 0.

Top CVEs affecting Inoideas Inoerp
CVESeverityScorePublishedSummary
CVE-2020-28870Critical9.82021-02-10In InoERP 0.7.2, an unauthorized attacker can execute arbitrary code on the server side due to lack of validations in /modules/sys/form_personalization/json_fp…
CVE-2019-16894Critical9.82019-09-26download.php in inoERP 4.15 allows SQL injection through insecure deserialization.
CVE-2019-25312Medium5.42026-02-11InoERP 0.7.2 contains a persistent cross-site scripting vulnerability in the comment section that allows unauthenticated attackers to inject malicious scripts…