Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ureport project ureport 2.2.9 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-48848
An arbitrary file read vulnerability in ureport v2.2.9 allows a remote malicious user to arbitrarily read files on the server by inserting a crafted path.
Ureport Project Ureport 2.2.9
NA
CVE-2023-24187
An XML External Entity (XXE) vulnerability in ureport v2.2.9 allows malicious users to execute arbitrary code via uploading a crafted XML file to /ureport/designer/saveReportFile.
Ureport Project Ureport 2.2.9
NA
CVE-2023-24188
ureport v2.2.9 exists to contain a directory traversal vulnerability via the deletion function which allows for arbitrary files to be deleted.
Ureport Project Ureport 2.2.9
7.5
CVSSv2
CVE-2020-21124
UReport 2.2.9 allows malicious users to execute arbitrary code due to a lack of access control to the designer page.
Ureport Project Ureport 2.2.9
5
CVSSv2
CVE-2020-21122
UReport v2.2.9 contains a Server-Side Request Forgery (SSRF) in the designer page which allows malicious users to detect intranet device ports.
Ureport Project Ureport 2.2.9
7.5
CVSSv2
CVE-2020-21125
An arbitrary file creation vulnerability in UReport 2.2.9 allows malicious users to execute arbitrary code.
Ureport Project Ureport 2.2.9
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started