Security Advisory

CVE-2020-37022

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-30 16:16:39

Last updated 2026-03-05 01:27:31

Assigner VulnCheck

State PUBLISHED

Description

OpenZ ERP 3.6.60 contains a persistent cross-site scripting vulnerability in the Employee modules name and description parameters. Attackers can inject malicious scripts through POST requests to , enabling session hijacking and manipulation of application modules.

← Browse all CVEs View on cve.org ↗