9 matches found
EUVD-2020-13902
Malware in sbrugna...
EUVD-2023-2941
Malicious code in bioql PyPI...
CVE-2023-48848
An arbitrary file read vulnerability in ureport v2.2.9 allows a remote attacker to arbitrarily read files on the server by inserting a crafted path...
CVE-2023-24187
An XML External Entity XXE vulnerability in ureport v2.2.9 allows attackers to execute arbitrary code via uploading a crafted XML file to /ureport/designer/saveReportFile...
CVE-2020-21125
An arbitrary file creation vulnerability in UReport 2.2.9 allows attackers to execute arbitrary code...
GHSA-FHJ6-GR87-G4CJ XML External Entity Reference in ureport
An XML External Entity XXE vulnerability in ureport v2.2.9 allows attackers to execute arbitrary code via uploading a crafted XML file to /ureport/designer/saveReportFile...
ureport v2.2.9 代码问题漏洞
UReport is a high-performance pure Java reporting engine based on the Spring architecture that prepares complex Chinese reports and statements by iterating over cell. A security vulnerability exists in ureport version v2.2.9. An attacker exploits the vulnerability to execute arbitrary code by...
Arbitrary file deletion in ureport
ureport v2.2.9 was discovered to contain an arbitrary file deletion vulnerability...
com.gccloud:gc-starter-plugins-report-controller (>=1.0.0 <=2.2.2.RELEASE), com.gccloud:gc-starter-plugins-report-server (>=1.0.0 <=1.2.4.2024062001.RELEASE) +11 more potentially affected by CVE-2020-21122 via com.bstek.ureport:ureport2-console (>=2.0.0 <=2.2.9)
com.bstek.ureport:ureport2-console MAVEN version =2.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.5.1, =1.5.1, =0.0.1, =1.1.0, =3.0.4-RELEASE, =2.0, =2.8.0, =4.2.0, =4.10.0 Source cves: CVE-2020-21122 Source advisory: OSV:GHSA-6Q3P-36F4-CWXV...