Browse all 5 CVE security advisories affecting Eliz Software. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Eliz Software develops enterprise resource planning (ERP) systems for mid-sized businesses, streamlining financial and operational workflows. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. The company has addressed five publicly disclosed CVEs to date, with no major security incidents reported. Their security posture has gradually improved through regular patch releases and enhanced coding practices, though legacy installations may remain vulnerable if not properly maintained.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-6878 | Directory Browsing in Eliz Software's Panel — PanelCWE-552 | 6.5AI | MediumAI | 2024-09-18 |
| CVE-2024-6877 | Reflected XSS in Eliz Software's Panel — PanelCWE-79 | 6.1AI | MediumAI | 2024-09-18 |
| CVE-2024-5960 | Plaintext Storage of a Password in Eliz Software's Panel — PanelCWE-256 | 9.8 | Critical | 2024-09-18 |
| CVE-2024-5959 | Stored XSS in Eliz Software's Panel — PanelCWE-79 | 5.4AI | MediumAI | 2024-09-18 |
| CVE-2024-5958 | SQLi in Eliz Software's Panel — PanelCWE-89 | 9.8AI | CriticalAI | 2024-09-18 |
This page lists every published CVE security advisory associated with Eliz Software. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.