CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-1886

Malware in sbrugna...

9.8CVSS9.2AI score0.00551EPSS

Exploits1References6

RedhatCVE•added 2025/05/22 5:33 p.m.•5 views

CVE-2020-27998

An issue was discovered in FastReport before 2020.4.0. It lacks a ScriptSecurity feature and therefore may mishandle for example GetType, typeof, TypeOf, DllImport, LoadLibrary, and GetProcAddress...

9.8CVSS6.8AI score0.00551EPSS

Exploits1

OSV•added 2021/08/02 5:28 p.m.•14 views

GHSA-V726-3VG9-CP34 Missing Authorization in FastReport

An issue was discovered in FastReport before 2020.4.0. It lacks a ScriptSecurity feature and therefore may mishandle for example GetType, typeof, TypeOf, DllImport, LoadLibrary, and GetProcAddress...

9.8CVSS9.4AI score0.00551EPSS

Exploits1References5

Github Security Blog•added 2021/08/02 5:28 p.m.•62 views

Missing Authorization in FastReport

An issue was discovered in FastReport before 2020.4.0. It lacks a ScriptSecurity feature and therefore may mishandle for example GetType, typeof, TypeOf, DllImport, LoadLibrary, and GetProcAddress...

9.8CVSS8.9AI score0.00551EPSS

Exploits1References6Affected Software1

Veracode•added 2020/11/02 7:24 a.m.•20 views

Remote Code Execution (RCE)

FastReport.OpenSource is vulnerable to remote code execution RCE. An attacker can create a new expression or edit an existing one into, for example System.String.Join",", System.IO.Directory.GetDirectories@"c:/" as the library does not use ScriptSecurity feature and mishandle GetType, typeof,...

9.8CVSS2.7AI score0.00551EPSS

Exploits1References6Affected Software1

OSV•added 2020/10/29 6:15 p.m.•10 views

CVE-2020-27998

An issue was discovered in FastReport before 2020.4.0. It lacks a ScriptSecurity feature and therefore may mishandle for example GetType, typeof, TypeOf, DllImport, LoadLibrary, and GetProcAddress...

9.8CVSS6.8AI score

Exploits0References4

NVD•added 2020/10/29 6:15 p.m.•8 views

CVE-2020-27998

An issue was discovered in FastReport before 2020.4.0. It lacks a ScriptSecurity feature and therefore may mishandle for example GetType, typeof, TypeOf, DllImport, LoadLibrary, and GetProcAddress...

9.8CVSS9.4AI score0.00551EPSS

Exploits1References4

Prion•added 2020/10/29 6:15 p.m.•15 views

Design/Logic Flaw

An issue was discovered in FastReport before 2020.4.0. It lacks a ScriptSecurity feature and therefore may mishandle for example GetType, typeof, TypeOf, DllImport, LoadLibrary, and GetProcAddress...

7.5CVSS9.3AI score0.00551EPSS

Exploits1References4Affected Software1

CVE•added 2020/10/29 5:8 p.m.•71 views

CVE-2020-27998

CVE-2020-27998 affects FastReport prior to 2020.4.0, where the missing ScriptSecurity feature can allow mishandling of scripting constructs such as GetType, typeof, TypeOf, DllImport, LoadLibrary, and GetProcAddress. This creates potential remote-execution/code-injection-like risks as noted in mu...

9.8CVSS9.3AI score0.00551EPSS

Exploits1References4Affected Software1

Cvelist•added 2020/10/29 5:8 p.m.•12 views

CVE-2020-27998

An issue was discovered in FastReport before 2020.4.0. It lacks a ScriptSecurity feature and therefore may mishandle for example GetType, typeof, TypeOf, DllImport, LoadLibrary, and GetProcAddress...

9.5AI score0.00551EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by