15 matches found
EUVD-2018-10411
Malware in sbrugna...
Cisco Unified Intelligence Center Arbitrary File Upload Vulnerability
Cisco Unified Intelligence Center is a web-based reporting platform from Cisco that consolidates contact center data and provides visual reporting capabilities. An arbitrary file upload vulnerability exists in the Cisco Unified Intelligence Center web interface, which stems from a lack of file...
CVE-2025-20274
A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an authenticated, remote attacker to upload arbitrary files to an affected device. This vulnerability is due to improper validation of files that are uploaded to the web-based management...
Cisco Unified Intelligence Center 代码问题漏洞
Cisco Unified Intelligence Center is a web-based reporting platform from Cisco that consolidates contact center data and provides visual reporting capabilities. An arbitrary file upload vulnerability exists in the Cisco Unified Intelligence Center web interface, which stems from a lack of file...
Progress Telerik Reporting <= 2024 Q3 (18.2.24.806) Multiple Vulnerabilities
The version of Progress Telerik Reporting installed on the remote Windows host is prior or equal to 2024 Q3 18.2.24.806. It is, therefore, affected by multiple vulnerabilities: - In Progress® Telerik® Reporting, versions 2024 Q3 18.2.24.806 or earlier, hyperlinks were permitted in the desktop...
Reportico 安全漏洞
Reportico is an open source PHP report designer from the individual developer Peter Deed. A security vulnerability exists in Reportico version 8.1.0 that originates from allowing an attacker to obtain sensitive information via the executemode parameter of a URL...
Reportico Security Breach
Reportico is an open source PHP report designer by Peter Deed, an individual developer. A security vulnerability exists in Reportico version 7.1.21 that stems from vulnerability to cross-site scripting XSS attacks...
The vulnerability of the Web Based Report Designer component of the Oracle Hyperion Financial Reporting application allows a malicious individual to gain unauthorized access to protected information.
The vulnerability of the Web Based Report Designer component of the Oracle Hyperion Financial Reporting application for automating budget management processes is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protect...
Design/Logic Flaw
Vulnerability in the Hyperion Financial Reporting product of Oracle Hyperion component: Web Based Report Designer. The supported version that is affected is 11.1.2.4. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion Financial...
CVE-2018-18695
M2SOFT Report Designer Viewer 5.0 allows a Buffer Overflow with Extended Instruction Pointer EIP control via a crafted MRD file...
CVE-2018-18695
The CVE-2018-18695 entry concerns M2SOFT Report Designer Viewer 5.0, where processing a crafted MRD file can trigger a buffer overflow and potentially allow control of the Extended Instruction Pointer (EIP). The available documents state the affected component and the underlying issue, but do not...
CVE-2018-18695
M2SOFT Report Designer Viewer 5.0 allows a Buffer Overflow with Extended Instruction Pointer EIP control via a crafted MRD file...
Infogram: Report Design Critical Stored DOM XSS Vulnerability
Hi Team, Another XSS vulnerability in report designer but this one is critical. Problem Point Report's Overview Table Report Creation Url https://infogram.com/app/edit/e7b161f1-f708-48e5-bab7-de9887ae202a Sample Data Click for Detail Sample URL https://infogram.com/report-classic-1g57pr0g3xdvp01...
Directory traversal
Directory traversal vulnerability in Reportico PHP Report Designer before 4.0 allows remote attackers to read arbitrary files via a .. dot dot in the xmlin parameter...
CVE-2014-3777
CVE-2014-3777 affects Reportico PHP Report Designer before 4.0. A directory traversal flaw allows an attacker to read arbitrary files via the xmlin parameter (.. traversal). Multiple connected sources confirm the vulnerable component is the Reportico web UI, with the root cause in the xmlin handl...