Notrinos Notrinoserp

5 CVEs affecting Notrinos Notrinoserp. Latest disclosed: 2023-03-23. Critical: 1, High: 2.

Top CVEs affecting Notrinos Notrinoserp
CVESeverityScorePublishedSummary
CVE-2022-2927Critical9.82022-08-22Weak Password Requirements in GitHub repository notrinos/notrinoserp prior to 0.7.
CVE-2023-24788High8.82023-03-23NotrinosERP v0.7 was discovered to contain a SQL injection vulnerability via the OrderNumber parameter at /NotrinosERP/sales/customer_delivery.php.
CVE-2022-2921High8.82022-08-21Exposure of Private Personal Information to an Unauthorized Actor in GitHub repository notrinos/notrinoserp prior to v0.7. This results in privilege escalation…
CVE-2022-2871Medium5.42022-08-17Cross-site Scripting (XSS) - Stored in GitHub repository notrinos/notrinoserp prior to 0.7.
CVE-2022-2965Medium4.32022-08-23Improper Restriction of Rendered UI Layers or Frames in GitHub repository notrinos/notrinoserp prior to 0.7.