VYPR
Vendor

Devs Palace

Products
1
CVEs
10
Across products
10
Status
Private

Products

1

Recent CVEs

10
  • CVE-2026-8262LowMay 11, 2026
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. This impacts an unknown function of the file /accounts/chart-save. Such manipulation leads to cross site scripting. The attack may be performed from remote. The exploit is publicly available and might be used.…

  • CVE-2026-8256LowMay 11, 2026
    risk 0.16cvss 2.4epss 0.00

    A security vulnerability has been detected in Devs Palace ERP Online up to 4.0.0. This vulnerability affects unknown code of the file /accounts/mr-save. Such manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed publicly…

  • CVE-2026-8255LowMay 11, 2026
    risk 0.16cvss 2.4epss 0.00

    A weakness has been identified in Devs Palace ERP Online up to 4.0.0. This affects an unknown part of the file /inventory/add_new_customer. This manipulation causes cross site scripting. The attack can be initiated remotely. The exploit has been made available to the public and…

  • CVE-2026-8254LowMay 11, 2026
    risk 0.16cvss 2.4epss 0.00

    A security flaw has been discovered in Devs Palace ERP Online up to 4.0.0. Affected by this issue is some unknown functionality of the file /inventory/sales_save. The manipulation results in cross site scripting. It is possible to launch the attack remotely. The exploit has been…

  • CVE-2026-8253LowMay 11, 2026
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. Affected by this vulnerability is an unknown functionality of the file /inventory/purchase_save. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit is…

  • CVE-2026-8221LowMay 10, 2026
    risk 0.16cvss 2.4epss 0.00

    A flaw has been found in Devs Palace ERP Online up to 4.0.0. This impacts an unknown function of the file /inventory/item-save. This manipulation causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been published and may be used. The…

  • CVE-2026-8220LowMay 10, 2026
    risk 0.16cvss 2.4epss 0.00

    A vulnerability was detected in Devs Palace ERP Online up to 4.0.0. This affects an unknown function of the file /inventory/customer-save. The manipulation results in cross site scripting. The attack can be executed remotely. The exploit is now public and may be used. The vendor…

  • CVE-2026-8219LowMay 10, 2026
    risk 0.16cvss 2.4epss 0.00

    A security vulnerability has been detected in Devs Palace ERP Online up to 4.0.0. The impacted element is an unknown function of the file /inventory/supplier-save. The manipulation leads to cross site scripting. Remote exploitation of the attack is possible. The exploit has been…

  • CVE-2026-8218LowMay 10, 2026
    risk 0.16cvss 2.4epss 0.00

    A weakness has been identified in Devs Palace ERP Online up to 4.0.0. The affected element is an unknown function of the file /inventory/purchase_return_save. Executing a manipulation can lead to cross site scripting. The attack may be launched remotely. The exploit has been…

  • CVE-2026-6651LowApr 20, 2026
    risk 0.16cvss 2.4epss 0.00

    A security flaw has been discovered in erponline.xyz ERP Online up to 4.0.0. This vulnerability affects unknown code of the component Inventory Edit Item Page. The manipulation of the argument Item Name results in cross site scripting. The attack may be launched remotely. The…