CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2011-1909

Malware in sbrugna...

6.8CVSS6.4AI score0.00951EPSS

Exploits0References7

Tenable Nessus•added 2014/11/08 12:0 a.m.•33 views

RHEL 6 : jasperreports-server-pro (RHSA-2014:0037)

An updated jasperreports-server-pro package that fixes two security issues, several bugs, and adds various enhancements is now available. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give...

5.8CVSS7.3AI score0.01566EPSS

Exploits1References6

Packet Storm•added 2014/05/09 12:0 a.m.•31 views

Jasper Server 5.5 Session Fixation

Session Fixation / Hijacking on JasperServer + Date: 09/05/2014 + Risk: High + CWE number: CWE-384 + Author: Felipe Andrian Peixoto + Vendor Homepage: http://www.jaspersoft.com/ + Software Download : http://sourceforge.net/projects/jasperserver/ + Contact: [email protected] + Tested on:...

7.4AI score

Exploits0

RedHat Linux•added 2014/04/09 6:2 p.m.•68 views

Important: Red Hat Security Advisory: jasperreports-server-pro security update

An updated jasperreports-server-pro package that fixes one security issue is now available. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fro...

9.8CVSS7.8AI score0.18767EPSS

Exploits5References2

RedHat Linux•added 2014/01/21 5:33 p.m.•33 views

Moderate: Red Hat Security Advisory: jasperreports-server-pro security, bug fix, and enhancement update

5.8CVSS6.8AI score0.01566EPSS

Exploits1References9

NVD•added 2011/09/20 10:55 a.m.•8 views

CVE-2011-1911

JasperServer in JasperReports Server Community Project 3.7.0 and 3.7.1 uses a predictable flowExecutionKey parameter, which makes it easier for remote attackers to conduct cross-site request forgery CSRF attacks via a brute-force approach...

6.8CVSS6.7AI score0.00951EPSS

Exploits0References6

Prion•added 2011/09/20 10:55 a.m.•13 views

Cross site request forgery (csrf)

6.8CVSS7.2AI score0.00951EPSS

Exploits0References6Affected Software1

CVE•added 2011/09/20 10:0 a.m.•43 views

CVE-2011-1911

CVE-2011-1911 affects JasperReports Server Community Project (JasperServer) versions 3.7.0 and 3.7.1. The root cause is a predictable _flowExecutionKey parameter, enabling CSRF via brute-forcing across requests. Impact described includes the ability for an attacker, tricking an authenticated user...

6.8CVSS6.9AI score0.00951EPSS

Exploits0References6Affected Software1

Cvelist•added 2011/09/20 10:0 a.m.•17 views

CVE-2011-1911

6.7AI score0.00951EPSS

Exploits0References6

CERT•added 2011/09/15 12:0 a.m.•31 views

JasperServer cross-site request forgery vulnerability

Overview JasperSoft's JasperServer is vulnerable to a cross-site request forgery CSRF vulnerability. Description According to JasperSoft's website: "JasperReports Server is a powerful, yet flexible and lightweight reporting server. Generate, organize, secure, and deliver interactive reports and...

6.8CVSS6.3AI score0.00951EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by