Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:3 p.m.9 views

CVE-2022-34113

An issue in the component /api/plugin/upload of Dataease v1.11.1 allows attackers to execute arbitrary code via a crafted plugin...

9.8CVSS7.7AI score0.01087EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2022/07/23 12:0 a.m.8 views

io.dataease:dataease-plugin-datasource (>=1.10.0 <=1.11.1), io.dataease:dataease-plugin-interface (>=1.0 <=1.11.1) +1 more potentially affected by CVE-2022-34113 via io.dataease:dataease-plugin-common (>=1.0 <=1.11.1)

io.dataease:dataease-plugin-common MAVEN version =1.0, =1.10.0, =1.0, =1.10.0, =1.11.1 Source cves: CVE-2022-34113 Source advisory: OSV:GHSA-5469-C5P2-XV5G...

9.8CVSS7.2AI score0.01087EPSS
Exploits1
NVD
NVD
added 2022/07/22 11:15 p.m.26 views

CVE-2022-34113

An issue in the component /api/plugin/upload of Dataease v1.11.1 allows attackers to execute arbitrary code via a crafted plugin...

9.8CVSS0.01087EPSS
Exploits1References1
CVE
CVE
added 2022/07/22 10:17 p.m.428 views

CVE-2022-34113

CVE-2022-34113 affects DataEase v1.11.1, where the vulnerable component is the /api/plugin/upload endpoint. A crafted plugin can lead to arbitrary code execution on the server due to improper handling in the upload workflow. Remediation: upgrade to DataEase v1.11.2, which contains a patch address...

9.8CVSS9.5AI score0.01087EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2022/07/22 10:17 p.m.18 views

CVE-2022-34113

An issue in the component /api/plugin/upload of Dataease v1.11.1 allows attackers to execute arbitrary code via a crafted plugin...

9.8CVSS9.5AI score0.01087EPSS
Exploits1References3
Rows per page
Query Builder