Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clipsoft rexpert vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-17322
ClipSoft REXPERT 1.0.0.527 and previous versions version allows arbitrary file creation via a POST request with the parameter set to the file path to be written. This can be an executable file that is written to in the arbitrary directory. User interaction is required to exploit ...
Clipsoft Rexpert
6.8
CVSSv2
CVE-2019-17323
ClipSoft REXPERT 1.0.0.527 and previous versions version allows arbitrary file creation and execution via report print function of rexpert viewer with modified XML document. User interaction is required to exploit this vulnerability in that the target must visit a malicious web p...
Clipsoft Rexpert
4.3
CVSSv2
CVE-2019-17324
ClipSoft REXPERT 1.0.0.527 and previous versions version allows directory traversal by issuing a special HTTP POST request with ../ characters. This could lead to create malicious HTML file, because they can inject a content with crafted template. User interaction is required to ...
Clipsoft Rexpert
4.3
CVSSv2
CVE-2019-17326
ClipSoft REXPERT 1.0.0.527 and previous versions version allows remote malicious user to arbitrary file deletion by issuing a HTTP GET request with a specially crafted parameter. User interaction is required to exploit this vulnerability in that the target must visit a malicious ...
Clipsoft Rexpert
5
CVSSv2
CVE-2019-17321
ClipSoft REXPERT 1.0.0.527 and previous versions version have an information disclosure issue. When requesting web page associated with session, could leak username via session file path of HTTP response data. No authentication is required.
Clipsoft Rexpert
4.3
CVSSv2
CVE-2019-17325
ClipSoft REXPERT 1.0.0.527 and previous versions version allows remote malicious user to upload arbitrary local file via the ActiveX method in RexViewerCtrl30.ocx. That could lead to disclosure of sensitive information. User interaction is required to exploit this vulnerability i...
Clipsoft Rexpert
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started