52 matches found
EUVD-2014-3716
Malware in sbrugna...
EUVD-2024-1365
Malicious code in bioql PyPI...
EUVD-2023-2936
Malicious code in bioql PyPI...
CVE-2023-46925
Reportico 7.1.21 is vulnerable to Cross Site Scripting XSS...
CVE-2023-48865
An issue discovered in Reportico Till 8.1.0 allows attackers to obtain sensitive information via executemode parameter of the URL...
CVE-2023-47438
SQL Injection vulnerability in Reportico Till 8.1.0 allows attackers to obtain sensitive information or other system information via the project parameter...
CVE-2024-31556
An issue in Reportico Web before v.8.1.0 allows a local attacker to execute arbitrary code and obtain sensitive information via the sessionid function...
GHSA-2Q2F-H83X-CX3X Reportico Web fails to invalidate cookies upon logout
An issue in Reportico Web before v.8.1.0. This vulnerability arises from the failure of the web application to properly invalidate session cookies upon logout. When a user logs out of the application, the session cookie should be invalidated to prevent unauthorized access. However, due to the...
Reportico Web fails to invalidate cookies upon logout
An issue in Reportico Web before v.8.1.0. This vulnerability arises from the failure of the web application to properly invalidate session cookies upon logout. When a user logs out of the application, the session cookie should be invalidated to prevent unauthorized access. However, due to the...
CVE-2024-31556
An issue in Reportico Web before v.8.1.0 allows a local attacker to execute arbitrary code and obtain sensitive information via the sessionid function...
CVE-2024-31556
CVE-2024-31556 affects Reportico Web prior to version 8.1.0. The issue allows a local attacker to execute arbitrary code and obtain sensitive information via the sessionid function, indicating a local-privilege or local-code execution risk. The vulnerability is described in multiple sources as af...
CVE-2024-31556
An issue in Reportico Web before v.8.1.0 allows a local attacker to execute arbitrary code and obtain sensitive information via the sessionid function...
PT-2024-24139 · Unknown · Reportico Web
Name of the Vulnerable Software and Affected Versions: Reportico Web versions prior to 8.1.0 Description: The issue allows a local attacker to execute arbitrary code and obtain sensitive information via the sessionid function. This vulnerability arises from the failure of the web application to...
Reportico 安全漏洞
Reportico is an open source PHP report designer from the individual developer Peter Deed. A security vulnerability exists in Reportico Web prior to version v.8.1.0 that originates from a vulnerability that allows a local attacker to execute arbitrary code and obtain sensitive information...
Reportico affected by Incorrect Access Control
An issue discovered in Reportico Till 8.1.0 allows attackers to obtain sensitive information via executemode parameter of the URL...
GHSA-PWW3-X2G7-X8Q2 Reportico affected by Incorrect Access Control
An issue discovered in Reportico Till 8.1.0 allows attackers to obtain sensitive information via executemode parameter of the URL...
CVE-2023-48865
An issue discovered in Reportico Till 8.1.0 allows attackers to obtain sensitive information via executemode parameter of the URL...
CVE-2023-48865
An issue discovered in Reportico Till 8.1.0 allows attackers to obtain sensitive information via executemode parameter of the URL...
CVE-2023-48865
An issue discovered in Reportico Till 8.1.0 allows attackers to obtain sensitive information via executemode parameter of the URL...
PT-2024-13656 · Reportico · Reportico
Name of the Vulnerable Software and Affected Versions: Reportico versions prior to 8.1.0 Description: An issue in Reportico allows attackers to obtain sensitive information via the execute mode parameter of the URL. Recommendations: For versions prior to 8.1.0, update to version 8.1.0 or later to...