Browse all 5 CVE security advisories affecting eoxia. AI-powered Chinese analysis, POCs, and references for each vulnerability.
EOXIA provides enterprise resource planning (ERP) solutions for supply chain management and logistics operations. Historically, the platform has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, with five CVEs documented to date. Security assessments reveal common weaknesses in authentication mechanisms and input validation across its web interfaces. While no major public security incidents have been reported, the consistent pattern of vulnerabilities in core business logic functions suggests potential risks for organizations relying on these systems for critical operations.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-4004 | Task Manager <= 3.0.2 - Authenticated (Subscriber+) Arbitrary Shortcode Execution via 'task_id' Parameter — Task ManagerCWE-94 | 6.5 | Medium | 2026-03-21 |
| CVE-2026-2351 | Task Manager <= 3.0.2 - Authenticated (Subscriber+) Arbitrary File Read — Task ManagerCWE-73 | 6.5 | Medium | 2026-03-21 |
This page lists every published CVE security advisory associated with eoxia. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.