Browse all 3 CVE security advisories affecting nofusscomputing. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Nofusscomputing develops streamlined software solutions for small business IT management, with three recorded CVEs primarily involving remote code execution and cross-site scripting vulnerabilities in their web-based administration interfaces. Historically, their products have shown weaknesses in input validation and session management, leading to unauthorized access risks. While no major public security incidents have been documented, the consistent pattern of similar vulnerability types suggests potential systemic issues in their secure coding practices. Their limited CVE history indicates either a small attack surface or underreporting, though the severity of identified flaws warrants careful implementation with additional security controls.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-58156 | Centurion ERP users can view hashed authentication tokens that belong to other users — centurion_erpCWE-285 | 1.9 | Low | 2025-08-29 |
| CVE-2024-53855 | User can view tickets from organizations they're not apart of in centurion_erp — centurion_erpCWE-653 | 1.9 | Low | 2024-11-27 |
| CVE-2024-49373 | Centurion ERP user can view projects from organizations they're not apart of — centurion_erpCWE-653 | 4.1 | Medium | 2024-10-22 |
This page lists every published CVE security advisory associated with nofusscomputing. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.