Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2023/02/08 12:0 a.m.74 views

TIBCO JasperReports Library 6.x < 6.3.5 / 6.4.1 / 6.4.2 / 6.4.21 / 7.1.0 / 7.2.0 Directory Traversal (CVE-2018-18809)

According to its self-reported version, the TIBCO JasperReports Library on the remote host is 6.x 6.3.5, 6.4.1, 6.4.2, 6.4.21, 7.1.0, or 7.2.0. It is, therefore, affected by a directory traversal vulnerability in the default server implementation that can allow web server users to access contents...

9.9CVSS8AI score0.79064EPSS
Exploits4References2
The Hacker News
The Hacker News
added 2022/12/30 5:32 a.m.42 views

CISA Warns of Active exploitation of JasperReports Vulnerabilities

The U.S. Cybersecurity and Infrastructure Security Agency CISA has added two years-old security flaws impacting TIBCO Software's JasperReports product to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation. The flaws, tracked as CVE-2018-5430 CVSS score: 7.7 an...

9.9CVSS2AI score0.79064EPSS
Exploits6
IBM Security Bulletins
IBM Security Bulletins
added 2021/10/06 2:49 p.m.28 views

Security Bulletin: TIBCO JasperReports Vulnerabilities Affect IBM Sterling B2B Integrator (CVE-2020-9410, CVE-2018-18809)

Summary IBM Sterling B2B Integrator has integrated multiple security vulnerability fixes from TIBCO JasperReports, please see list of CVEs for vulnerability details Vulnerability Details CVEID: CVE-2020-9410 DESCRIPTION: TIBCO JasperReports Library and JasperReports Server are vulnerable to...

9.9CVSS1AI score0.79064EPSS
Exploits4Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/06/16 7:25 p.m.27 views

Security Bulletin: Multiple JasperReports Vulnerabilities Affect IBM Control Center (CVE-2020-9410, CVE-2018-18809)

Summary JasperReports Library and JasperReports Server are vulnerable to cross-site scripting, caused by improper validation of user-supplied input. Vulnerability Details CVEID: CVE-2020-9410 DESCRIPTION: TIBCO JasperReports Library and JasperReports Server are vulnerable to cross-site scripting,...

9.9CVSS0.5AI score0.79064EPSS
Exploits4Affected Software1
0day.today
0day.today
added 2019/09/10 12:0 a.m.78 views

Tibco JasperSoft Path Traversal Vulnerability

Exploit for multiple platform in category web applications Title: CVE-2018-18809 Path traversal in Tibco JasperSoft Credit: Elar Lang / https://security.elarlang.eu Vendor/Product: Tibco JasperSoft https://www.jaspersoft.com/ Vulnerability: Path traversal CVE: CVE-2018-18809 Path traversal...

4CVSS0.3AI score0.79064EPSS
Exploits4
Packet Storm
Packet Storm
added 2019/09/09 12:0 a.m.347 views

Tibco JasperSoft Path Traversal

Title: CVE-2018-18809 Path traversal in Tibco JasperSoft Credit: Elar Lang / https://security.elarlang.eu Vendor/Product: Tibco JasperSoft https://www.jaspersoft.com/ Vulnerability: Path traversal CVE: CVE-2018-18809 Path traversal Vulnerability is in reportresource/reportresource/ service and in...

4CVSS6.8AI score0.79064EPSS
Exploits4
Circl
Circl
added 2019/03/08 12:21 a.m.9 views

CVE-2018-18809

creationtimestamp| type| source ---|---|--- 2019-03-08 00:21:34+00:00| seen| https://t.me/cibsecurity/2947 2023-06-14 21:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2024-12-24 20:33:37+00:00| seen| https://feedsin.space/feed/CISAKevBot/items/2971751 2025-02-14 10:05:59+00:00| see...

9.9CVSS7AI score0.79064EPSS
Exploits4References5
NVD
NVD
added 2019/03/07 10:29 p.m.17 views

CVE-2018-18809

The default server implementation of TIBCO Software Inc.'s TIBCO JasperReports Library, TIBCO JasperReports Library Community Edition, TIBCO JasperReports Library for ActiveMatrix BPM, TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for...

9.9CVSS6.7AI score0.79064EPSS
Exploits4References8
CVE
CVE
added 2019/03/07 10:0 p.m.631 views

CVE-2018-18809

TIBCO JasperReports Library and related JasperReports Server components are affected by a directory traversal vulnerability (CVE-2018-18809) in their default server implementations. The issue could allow web server users to access contents of the host system via specially crafted URL requests con...

9.9CVSS7.4AI score0.79064EPSS
In wildExploits4References8Affected Software2
Rows per page
Query Builder