3 matches found
Reportico 安全漏洞
Reportico is an open source PHP report designer from the individual developer Peter Deed. A security vulnerability exists in Reportico version 8.1.0 that originates from allowing an attacker to obtain sensitive information via the executemode parameter of a URL...
Directory traversal
Directory traversal vulnerability in Reportico PHP Report Designer before 4.0 allows remote attackers to read arbitrary files via a .. dot dot in the xmlin parameter...
CVE-2014-3777
CVE-2014-3777 affects Reportico PHP Report Designer before 4.0. A directory traversal flaw allows an attacker to read arbitrary files via the xmlin parameter (.. traversal). Multiple connected sources confirm the vulnerable component is the Reportico web UI, with the root cause in the xmlin handl...