2 matches found
CVE-2023-50895
CVE-2023-50895 affects Janitza GridVis up to version 9.0.66; exposed dangerous methods in the de.janitza.pasw.project.server.ServerDatabaseProject load functionality allow remote authenticated administrative users to execute arbitrary Groovy code. Exploitation context and technical details are su...
CVE-2023-50894
Janitza GridVis versions up to 9.0.66 contain a vulnerability in the PasswordEncryption function (de.janitza.pasw.feature.impl.activators.PasswordEncryption) that uses hard-coded credentials. This allows remote authenticated administrative users to view cleartext database credentials present in e...