VYPR

Ury

by Ury

Source repositories

CVEs (1)

  • CVE-2025-13168MedNov 14, 2025
    risk 0.34cvss 6.3epss 0.00

    A weakness has been identified in ury-erp ury up to 0.2.0. This affects the function overrided_past_order_list of the file ury/ury/api/pos_extend.py. This manipulation of the argument search_term causes sql injection. Remote exploitation of the attack is possible. The exploit…