VYPR
Vendor

Aptsys

Products
3
CVEs
3
Across products
4
Status
Private

Products

3

Recent CVEs

3
  • CVE-2025-52025Jan 23, 2026
    risk 0.00cvss epss 0.00

    An SQL Injection vulnerability exists in the GetServiceByRestaurantID endpoint of the Aptsys gemscms POS Platform backend thru 2025-05-28. The vulnerability arises because user input is directly inserted into a dynamic SQL query syntax without proper sanitization or…

  • CVE-2025-52024Jan 23, 2026
    risk 0.00cvss epss 0.00

    A vulnerability exists in the Aptsys POS Platform Web Services module thru 2025-05-28, which exposes internal API testing tools to unauthenticated users. By accessing specific URLs, an attacker is presented with a directory-style index listing all available backend services and…

  • CVE-2025-52026Jan 23, 2026
    risk 0.00cvss epss 0.00

    An information disclosure vulnerability exists in the /srvs/membersrv/getCashiers endpoint of the Aptsys gemscms backend platform thru 2025-05-28. This unauthenticated endpoint returns a list of cashier accounts, including names, email addresses, usernames, and passwords hashed…

VYPR — Vulnerability Intelligence