Browse all 6 CVE security advisories affecting Tosei. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Tosei develops enterprise resource planning (ERP) software for supply chain management, with its core use case streamlining procurement and inventory operations. Historically, vulnerabilities in Tosei products have frequently included remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from insufficient input validation and access controls. The software's integration with multiple business systems expands potential attack surfaces. While no major public security incidents have been widely documented, the six CVEs on record highlight persistent security concerns, particularly in web interfaces and API endpoints, underscoring the need for robust patch management and security hardening in environments utilizing this ERP platform.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-2944 | Tosei Online Store Management System ネット店舗管理システム HTTP POST Request monitor.php system os command injection — Online Store Management System ネット店舗管理システムCWE-78 | 7.3 | High | 2026-02-22 |
| CVE-2026-1192 | Tosei Online Store Management System ネット店舗管理システム imode_alldata.php command injection — Online Store Management System ネット店舗管理システムCWE-77 | 7.3 | High | 2026-01-19 |
| CVE-2024-7898 | Tosei Online Store Management System ネット店舗管理システム Backend default credentials — Online Store Management System ネット店舗管理システムCWE-1392 | 7.3 | High | 2024-08-17 |
| CVE-2024-7897 | Tosei Online Store Management System ネット店舗管理システム tosei_kikai.php command injection — Online Store Management System ネット店舗管理システムCWE-77 | 6.3 | Medium | 2024-08-17 |
| CVE-2024-7896 | Tosei Online Store Management System ネット店舗管理システム p1_ftpserver.php command injection — Online Store Management System ネット店舗管理システムCWE-77 | 6.3 | Medium | 2024-08-17 |
This page lists every published CVE security advisory associated with Tosei. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.