Medium severity5.5NVD Advisory· Published Jan 23, 2025· Updated Jun 2, 2026

CVE-2024-10539

Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Uyumsoft Informatin Systems Uyumsoft ERP allows XSS Using Invalid Characters, Reflected XSS.

This issue affects Uyumsoft ERP: before Erp4.2109.166p45.

Affected products

Uyumsoft/Uyumsoft ERPllm-create
Range: <4.2109.166p45

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0017nvd
www.usom.gov.tr/bildirim/tr-25-0017nvd

News mentions

No linked articles in our index yet.

cvss	0.358
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000