CVE-2025-58156 | nofusscomputing centurion_erp up to 1.20.x improper authorization (GHSA-x75j-cm35-5qcg)

Inserito da Angelo Barbosa | Ago 30, 2025 | CVE

A vulnerability marked as critical has been reported in nofusscomputing centurion_erp up to 1.20.x. Impacted is an unknown function. This manipulation causes improper authorization.

This vulnerability is tracked as CVE-2025-58156. The attack is restricted to local execution. No exploit exists.

It is suggested to upgrade the affected component.

CVE-2025-58156 | nofusscomputing centurion_erp up to 1.20.x improper authorization (GHSA-x75j-cm35-5qcg)

Post correlati

CVE-2023-6460 | nodejs-firestore up to 6.1.0 insecure storage of sensitive information

CVE-2024-22722 | Form Tools 3.1.1 Template Group Name injection

CVE-2024-40594 | OpenAI ChatGPT App up to 2024-07-04 on macOS Conversation cleartext storage in a file or on disk

CVE-2024-3862 | Mozilla Firefox up to 124 MarkStack uninitialized pointer