Lucene search
K

133 matches found

RedhatCVE
RedhatCVE
added 2025/08/16 1:28 p.m.7 views

CVE-2025-8963

A vulnerability was determined in jeecgboot JimuReport up to 2.1.1. Affected by this issue is some unknown functionality of the file /drag/onlDragDataSource/testConnection of the component Data Large Screen Template. The manipulation leads to deserialization. The attack may be launched remotely...

6.5CVSS7.2AI score0.00438EPSS
Exploits1References1
NVD
NVD
added 2025/08/14 1:15 p.m.7 views

CVE-2025-8963

A vulnerability was determined in jeecgboot JimuReport up to 2.1.1. Affected by this issue is some unknown functionality of the file /drag/onlDragDataSource/testConnection of the component Data Large Screen Template. The manipulation leads to deserialization. The attack may be launched remotely...

9.8CVSS0.00438EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/08/14 1:2 p.m.6 views

CVE-2025-8963 jeecgboot JimuReport Data Large Screen Template testConnection deserialization

A vulnerability was determined in jeecgboot JimuReport up to 2.1.1. Affected by this issue is some unknown functionality of the file /drag/onlDragDataSource/testConnection of the component Data Large Screen Template. The manipulation leads to deserialization. The attack may be launched remotely...

6.5CVSS7.1AI score0.00438EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/08/14 1:2 p.m.10 views

CVE-2025-8963 jeecgboot JimuReport Data Large Screen Template testConnection deserialization

A vulnerability was determined in jeecgboot JimuReport up to 2.1.1. Affected by this issue is some unknown functionality of the file /drag/onlDragDataSource/testConnection of the component Data Large Screen Template. The manipulation leads to deserialization. The attack may be launched remotely...

6.5CVSS0.00438EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/08/14 12:0 a.m.4 views

JimuReport 代码问题漏洞

JimuReport is a free reporting tool open source by JEECG in China. A code issue vulnerability exists in JimuReport 2.1.1 and earlier versions, which stems from a misbehavior in file /drag/onlDragDataSource/testConnection leading to deserialization...

9.8CVSS7AI score0.00438EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/23 11:38 a.m.10 views

CVE-2025-24461

In JetBrains TeamCity before 2024.12.1 decryption of connection secrets without proper permissions was possible via Test Connection endpoint...

6.5CVSS6.9AI score0.00302EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 5:25 a.m.6 views

CVE-2024-1032

A vulnerability classified as critical was found in openBI up to 1.0.8. Affected by this vulnerability is the function testConnection of the file /application/index/controller/Databasesource.php of the component Test Connection Handler. The manipulation leads to deserialization. The attack can be...

9.8CVSS9.6AI score0.00765EPSS
Exploits0References1
NVD
NVD
added 2025/01/21 6:15 p.m.12 views

CVE-2025-24461

In JetBrains TeamCity before 2024.12.1 decryption of connection secrets without proper permissions was possible via Test Connection endpoint...

6.5CVSS0.00302EPSS
Exploits0References1
OSV
OSV
added 2025/01/21 6:15 p.m.9 views

CVE-2025-24461

In JetBrains TeamCity before 2024.12.1 decryption of connection secrets without proper permissions was possible via Test Connection endpoint...

6.5CVSS5.8AI score0.00302EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/21 5:23 p.m.15 views

CVE-2025-24461

In JetBrains TeamCity before 2024.12.1 decryption of connection secrets without proper permissions was possible via Test Connection endpoint...

6.5CVSS0.00302EPSS
Exploits0References1
CVE
CVE
added 2025/01/21 5:23 p.m.69 views

CVE-2025-24461

CVE-2025-24461 affects JetBrains TeamCity prior to 2024.12.1. The issue allows decryption of connection secrets without proper permissions via the Test Connection endpoint, exposing high confidentiality impact with no reported integrity or availability changes. Affected component: Test Connection...

6.5CVSS7AI score0.00302EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/21 5:23 p.m.10 views

CVE-2025-24461

In JetBrains TeamCity before 2024.12.1 decryption of connection secrets without proper permissions was possible via Test Connection endpoint...

6.5CVSS7.2AI score0.00302EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/21 12:0 a.m.4 views

PT-2025-5367 · Jetbrains · Teamcity

Name of the Vulnerable Software and Affected Versions: JetBrains TeamCity versions prior to 2024.12.1 Description: The issue allows decryption of connection secrets without proper permissions via the "Test Connection" endpoint. This is related to incorrect authorization in the system...

6.8CVSS7.1AI score0.00302EPSS
Exploits0References9
Exploit DB
Exploit DB
added 2024/01/31 12:0 a.m.265 views

RoyalTSX 6.0.1 - RTSZ File Handling Heap Memory Corruption PoC

RoyalTSX 6.0.1 RTSZ File Handling Heap Memory Corruption PoC Vendor: Royal Apps GmbH Web page: https://www.royalapps.com Affected version: 6.0.1.1000 macOS Summary: Royal TS is an ideal tool for system engineers and other IT professionals who need remote access to systems with different protocols...

7.4AI score
Exploits0
OSV
OSV
added 2024/01/30 2:15 p.m.3 views

CVE-2024-1032

A vulnerability classified as critical was found in openBI up to 1.0.8. Affected by this vulnerability is the function testConnection of the file /application/index/controller/Databasesource.php of the component Test Connection Handler. The manipulation leads to deserialization. The attack can be...

9.8CVSS5.3AI score0.00765EPSS
Exploits0References3
Prion
Prion
added 2024/01/30 2:15 p.m.22 views

Deserialization of untrusted data

A vulnerability classified as critical was found in openBI up to 1.0.8. Affected by this vulnerability is the function testConnection of the file /application/index/controller/Databasesource.php of the component Test Connection Handler. The manipulation leads to deserialization. The attack can be...

7.5CVSS7.2AI score0.00765EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/30 1:31 p.m.11 views

CVE-2024-1032 openBI Test Connection Databasesource.php testConnection deserialization

A vulnerability classified as critical was found in openBI up to 1.0.8. Affected by this vulnerability is the function testConnection of the file /application/index/controller/Databasesource.php of the component Test Connection Handler. The manipulation leads to deserialization. The attack can be...

7.5CVSS7AI score0.00765EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/01/30 12:0 a.m.3 views

PT-2024-16185 · Openbi · Openbi

Name of the Vulnerable Software and Affected Versions: openBI versions up to 1.0.8 Description: A critical issue was found in the testConnection function of the /application/index/controller/Databasesource.php file, part of the Test Connection Handler component. This issue leads to deserializatio...

9.8CVSS7.4AI score0.00765EPSS
Exploits0References6
OSV
OSV
added 2023/12/31 3:15 a.m.3 views

CVE-2023-52277

Royal RoyalTSX before 6.0.2.1 allows attackers to cause a denial of service Heap Memory Corruption and application crash or possibly have unspecified other impact via a long hostname in an RTSZ file, if the victim clicks on Test Connection. This occurs during SecureGatewayHost object processing i...

7.8CVSS5.8AI score0.00189EPSS
Exploits1References1
NVD
NVD
added 2023/12/31 3:15 a.m.14 views

CVE-2023-52277

Royal RoyalTSX before 6.0.2.1 allows attackers to cause a denial of service Heap Memory Corruption and application crash or possibly have unspecified other impact via a long hostname in an RTSZ file, if the victim clicks on Test Connection. This occurs during SecureGatewayHost object processing i...

7.8CVSS0.00189EPSS
Exploits1References1
Rows per page
Query Builder