GCVE - cpe:2.3:a:abc-erp:abc_erp:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:abc-erp:abc_erp:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Abc Erp (`1a991e99-d63c-5239-9fe3-dcc4162183d6`)
Product	Abc Erp (`c37f6411-7e9f-581e-bf3b-a9fe8286ee27`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-25174`	vulnerable	2026-06-03 14:38:41.091803	ABC ERP 0.6.4 Cross-Site Request Forgery via _configurar_perfil.php MEDIUM (5.3) ABC ERP 0.6.4 contains a cross-site request forgery vulnerability that allows attackers to modify administrator credentials by submitting forged requests to _configurar_perfil.php. Attackers can craft malicious forms or links containing parameters like usuario, contrasena1, contrasena2, nombre, and email to change admin account settings without authentication. Published: 2026-03-06T12:19:05.105Z Updated: 2026-03-09T15:26:23.814Z Open on db.gcve.eu Reference links https://www.exploit-db.com/exploits/45836 https://www.vulncheck.com/advisories/abc-erp-cross-site-request-forgery-via-configurar-perfilphp	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.