{"uuid": "107b3f5d-94d2-4010-b9ba-285bcd44dff5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-8253", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116552999803024611", "content": "\u26a0\ufe0f CVE-2026-8253: MEDIUM severity XSS in Devs Palace ERP Online v4.0.0 via /inventory/purchase_save. No patch; vendor unresponsive. Apply WAF rules & restrict access. Details: https://radar.offseq.com/threat/cve-2026-8253-cross-site-scripting-in-devs-palace--7f918dea #OffSeq #XSS #ERP #Vuln", "creation_timestamp": "2026-05-11T00:00:40.526691Z"}