Browse all 1 CVE security advisories affecting Bigprof. AI-powered Chinese analysis, POCs, and references for each vulnerability.
BigProf is a business management platform handling enterprise operations and data processing. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access controls. The platform's complex architecture and extensive third-party integrations have contributed to security challenges. While no major public incidents have been widely documented, its 14 CVEs indicate persistent security concerns, particularly in authentication mechanisms and API endpoints. Organizations implementing BigProf should prioritize regular patching and harden configurations against common exploitation patterns targeting its administrative interfaces and data processing functions.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2019-25265 | Online Inventory Manager 3.2 - Persistent Cross-Site Scripting — Online Inventory ManagerCWE-79 | 6.4 | Medium | 2026-02-03 |
This page lists every published CVE security advisory associated with Bigprof. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.