VYPR

Ebiz4u

by Inogard Co,,LTD

CVEs (2)

  • CVE-2020-7831HigAug 24, 2020
    risk 0.57cvss 8.8epss 0.01

    A vulnerability in the web-based contract management service interface Ebiz4u of INOGARD could allow an victim user to download any file. The attacker is able to use startup menu directory via directory traversal for automatic execution. The victim user need to reboot, however.

  • CVE-2019-19165HigApr 29, 2020
    risk 0.47cvss 7.2epss 0.01

    AxECM.cab(ActiveX Control) in Inogard Ebiz4u contains a vulnerability that could allow remote files to be downloaded and executed by setting arguments to the activeX method. Download of Code Without Integrity Check vulnerability in ActiveX control of Inogard Co,,LTD Ebiz4u…