2026-01-30 16:16:39
VulnCheck
PUBLISHED
OpenZ ERP 3.6.60 contains a persistent cross-site scripting vulnerability in the Employee modules name and description parameters. Attackers can inject malicious scripts through POST requests to , enabling session hijacking and manipulation of application modules.