Vulnerabilities in Digiwin
16 resultsCVE-2024-4893CRITICALDigiWin EasyFlow .NET - SQL InjectionEPSS 0.8%CVE-2024-5311CRITICALDigiWin EasyFlow .NET - SQL InjectionEPSS 0.6%CVE-2025-7343CRITICALDigiwin|SFT - SQL InjectionEPSS 0.6%CVE-2024-7323MEDIUMDigiwin EasyFlow .NET - Arbitrary File DownloadEPSS 0.6%CVE-2025-7344HIGHDigiwin|EAI - Privilege EscalationEPSS 0.5%CVE-2025-11949HIGHDigiwin|EasyFlow .NET and EasyFlow AiNet - Missing AuthenticationEPSS 0.4%CVE-2025-2705MEDIUMDigiwin ERP FileUploadApi.ashx DoWebUpload unrestricted uploadEPSS 0.4%CVE-2026-5964CRITICALDigiwin|EasyFlow .NET - SQL InjectionEPSS 0.4%CVE-2026-5963CRITICALDigiwin|EasyFlow .NET - SQL InjectionEPSS 0.4%CVE-2025-13165HIGHDigiwin|EasyFlow GP - Denial of serviceEPSS 0.4%CVE-2026-12581HIGHDigiwin|EasyFlow .NET - Session FixationEPSS 0.3%CVE-2025-13164MEDIUMDigiwin|EasyFlow GP - Insufficiently Protected CredentialsEPSS 0.3%CVE-2025-13163MEDIUMDigiwin|EasyFlow GP - Insufficiently Protected CredentialsEPSS 0.3%CVE-2025-12503HIGHDigiwin|EasyFlow .NET and EasyFlow AiNetEPSS 0.3%CVE-2025-2706MEDIUMDigiwin ERP UploadAjaxAPI.ashx unrestricted uploadEPSS 0.3%CVE-2026-12580MEDIUMDigiwin|EasyFlow .NET - Stored Cross-Site ScriptingEPSS 0.2%