Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.18 views

EUVD-2020-13902

Malware in sbrugna...

9.8CVSS9.4AI score0.02114EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-2941

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00948EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 4:34 a.m.6 views

CVE-2023-48848

An arbitrary file read vulnerability in ureport v2.2.9 allows a remote attacker to arbitrarily read files on the server by inserting a crafted path...

7.5CVSS6.8AI score0.00948EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 1:56 a.m.13 views

CVE-2023-24187

An XML External Entity XXE vulnerability in ureport v2.2.9 allows attackers to execute arbitrary code via uploading a crafted XML file to /ureport/designer/saveReportFile...

7.8CVSS7.7AI score0.00918EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:50 p.m.25 views

CVE-2020-21125

An arbitrary file creation vulnerability in UReport 2.2.9 allows attackers to execute arbitrary code...

9.8CVSS7.5AI score0.01724EPSS
Exploits1
OSV
OSV
added 2023/02/14 3:30 a.m.2 views

GHSA-FHJ6-GR87-G4CJ XML External Entity Reference in ureport

An XML External Entity XXE vulnerability in ureport v2.2.9 allows attackers to execute arbitrary code via uploading a crafted XML file to /ureport/designer/saveReportFile...

7.8CVSS7.4AI score0.00918EPSS
Exploits1References5
CNNVD
CNNVD
added 2023/02/14 12:0 a.m.9 views

ureport v2.2.9 代码问题漏洞

UReport is a high-performance pure Java reporting engine based on the Spring architecture that prepares complex Chinese reports and statements by iterating over cell. A security vulnerability exists in ureport version v2.2.9. An attacker exploits the vulnerability to execute arbitrary code by...

7.8CVSS7.9AI score0.00918EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2023/02/13 9:31 p.m.20 views

Arbitrary file deletion in ureport

ureport v2.2.9 was discovered to contain an arbitrary file deletion vulnerability...

9.1CVSS9AI score0.01457EPSS
Exploits1References6Affected Software1
vulnersOsv
vulnersOsv
added 2021/09/20 8:45 p.m.7 views

com.gccloud:gc-starter-plugins-report-controller (>=1.0.0 <=2.2.2.RELEASE), com.gccloud:gc-starter-plugins-report-server (>=1.0.0 <=1.2.4.2024062001.RELEASE) +11 more potentially affected by CVE-2020-21122 via com.bstek.ureport:ureport2-console (>=2.0.0 <=2.2.9)

com.bstek.ureport:ureport2-console MAVEN version =2.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.5.1, =1.5.1, =0.0.1, =1.1.0, =3.0.4-RELEASE, =2.0, =2.8.0, =4.2.0, =4.10.0 Source cves: CVE-2020-21122 Source advisory: OSV:GHSA-6Q3P-36F4-CWXV...

5.3CVSS6AI score0.00823EPSS
Exploits1
Rows per page
Query Builder