Skip to main content

Openbravo Erp

3 CVEs product

Monthly

CVE-2019-14362 MEDIUM POC This Month

Openbravo ERP before 3.0PR19Q1.3 is affected by Directory Traversal. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Openbravo Erp
NVD
CVSS 3.0
5.4
EPSS
2.1%
CVE-2017-9437 HIGH This Week

Openbravo Business Suite 3.0 is affected by SQL injection. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Openbravo Erp
NVD
CVSS 3.0
8.8
EPSS
0.4%
CVE-2013-3617 LOW POC THREAT Monitor

The XML API in Openbravo ERP 2.5, 3.0, and earlier allows remote authenticated users to read arbitrary files via an XML document with an external entity declaration in conjunction with an entity. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 56.7%.

Privilege Escalation XXE Openbravo Erp
NVD Exploit-DB
CVSS 2.0
3.5
EPSS
56.7%
EPSS 2% CVSS 5.4
MEDIUM POC This Month

Openbravo ERP before 3.0PR19Q1.3 is affected by Directory Traversal. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Openbravo Erp
NVD
EPSS 0% CVSS 8.8
HIGH This Week

Openbravo Business Suite 3.0 is affected by SQL injection. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Openbravo Erp
NVD
EPSS 57% CVSS 3.5
LOW POC THREAT Monitor

The XML API in Openbravo ERP 2.5, 3.0, and earlier allows remote authenticated users to read arbitrary files via an XML document with an external entity declaration in conjunction with an entity. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 56.7%.

Privilege Escalation XXE Openbravo Erp
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy