Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
businessobjects crystal enterprise 10 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-4099
Business Objects Crystal Enterprise 9 and 10 generates predictable session identifiers, which allows remote malicious users to hijack sessions of other users via WCSID cookie values.
Businessobjects Crystal Enterprise 9
Businessobjects Crystal Enterprise 10
NA
CVE-2004-2742
Cross-site scripting (XSS) vulnerability in the report viewer in Crystal Enterprise 8.5, 9, and 10 allows remote malicious users to inject arbitrary web script or HTML via script in the URL to a report (RPT) file.
Businessobjects Crystal Enterprise 8.5
Businessobjects Crystal Enterprise 10
Businessobjects Crystal Enterprise 9
NA
CVE-2004-0204
Directory traversal vulnerability in the web viewers for Business Objects Crystal Reports 9 and 10, and Crystal Enterprise 9 or 10, as used in Visual Studio .NET 2003 and Outlook 2003 with Business Contact Manager, Microsoft Business Solutions CRM 1.2, and other products, allows ...
Bea Weblogic Server 8.1
Microsoft Visual Studio .net 2003
Microsoft Outlook 2003
Businessobjects Crystal Reports 9
Microsoft Business Solutions Crm 1.2
Borland Software J Builder
Businessobjects Crystal Enterprise 9
Businessobjects Crystal Enterprise 10
Businessobjects Crystal Reports 10
Businessobjects Crystal Enterprise Ras 8.5
Businessobjects Crystal Enterprise Java Sdk 8.5
1 EDB exploit
NA
CVE-2004-1981
The web interface for Crystal Reports allows remote malicious users to cause a denial of service (disk exhaustion) by repeatedly requesting reports without retrieving the associated image files, which are not cleared from the image file folder.
Businessobjects Crystal Reports 9
Businessobjects Crystal Enterprise 9
Businessobjects Crystal Enterprise 10
Businessobjects Crystal Reports 10
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started