Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
report viewer vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-34796
Cross site scripting (XSS) vulnerabiliy in dmarcts-report-viewer dashboard versions 1.1 and thru commit 8a1d882b4c481a05e296e9b38a7961e912146a0f, allows unauthenticated malicious users to execute arbitrary code via the org_name or domain values.
Techsneeze Dmarc Report 1.1
NA
CVE-2023-25261
Certain Stimulsoft GmbH products are affected by: Remote Code Execution. This affects Stimulsoft Designer (Desktop) 2023.1.4 and Stimulsoft Designer (Web) 2023.1.3 and Stimulsoft Viewer (Web) 2023.1.3. Access to the local file system is not prohibited in any way. Therefore, an at...
Stimulsoft Viewer 2023.1.3
Stimulsoft Viewer 2023.1.4
Stimulsoft Designer 2023.1.3
Stimulsoft Designer 2023.1.4
Stimulsoft Designer 2023.1
6.8
CVSSv2
CVE-2019-17323
ClipSoft REXPERT 1.0.0.527 and previous versions version allows arbitrary file creation and execution via report print function of rexpert viewer with modified XML document. User interaction is required to exploit this vulnerability in that the target must visit a malicious web p...
Clipsoft Rexpert
4.3
CVSSv2
CVE-2019-11776
In Eclipse BIRT versions 1.0 to 4.7, the Report Viewer allows Reflected XSS in URL parameter. Attacker can execute the payload in victim's browser context.
Eclipse Business Intelligence And Reporting Tools
4.3
CVSSv2
CVE-2019-11358
jQuery prior to 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
Jquery Jquery
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Drupal Drupal
Backdropcms Backdrop
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Netapp Snapcenter -
Netapp Oncommand System Manager
Redhat Cloudforms 4.7
Redhat Virtualization Manager 4.3
Oracle Service Bus 12.1.3.0.0
Oracle Primavera Unifier 16.2
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Weblogic Server 12.1.3.0.0
Oracle Service Bus 11.1.1.9.0
Oracle Jdeveloper 11.1.1.9.0
Oracle Primavera Unifier 16.1
155 Github repositories
4.6
CVSSv2
CVE-2018-18695
M2SOFT Report Designer Viewer 5.0 allows a Buffer Overflow with Extended Instruction Pointer (EIP) control via a crafted MRD file.
M2soft Report Designer 5.0
4.3
CVSSv2
CVE-2017-9140
Cross-site scripting (XSS) vulnerability in Telerik.ReportViewer.WebForms.dll in Telerik Reporting for ASP.NET WebForms Report Viewer control before R1 2017 SP2 (11.0.17.406) allows remote malicious users to inject arbitrary web script or HTML via the bgColor parameter to Telerik...
Progress Telerik Reporting
Progress Sitefinity Cms
4.3
CVSSv2
CVE-2015-2165
Multiple cross-site scripting (XSS) vulnerabilities in the Report Viewer in Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4.x, 5.x, and 6.x allow remote malicious users to inject arbitrary web script or HTML via the (1) portal, (2) fromDate, (3) toDate, (4) fromTime, (5)...
Ericsson Drutt Mobile Service Delivery Platform 4.0
Ericsson Drutt Mobile Service Delivery Platform 5.0
Ericsson Drutt Mobile Service Delivery Platform 6.0
3.5
CVSSv2
CVE-2013-3004
Directory traversal vulnerability in BIRT-Report Viewer in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.x and 7.2.x prior to 7.2.1.5 allows remote authenticated users to read arbitrary files via unspecified vectors.
Ibm Tivoli Application Dependency Discovery Manager 7.2.0
Ibm Tivoli Application Dependency Discovery Manager 7.2.0.7
Ibm Tivoli Application Dependency Discovery Manager 7.2.0.8
Ibm Tivoli Application Dependency Discovery Manager 7.1.2.3
Ibm Tivoli Application Dependency Discovery Manager 7.1.2.4
Ibm Tivoli Application Dependency Discovery Manager 7.2.1.1
Ibm Tivoli Application Dependency Discovery Manager 7.2.0.3
Ibm Tivoli Application Dependency Discovery Manager 7.2.0.4
Ibm Tivoli Application Dependency Discovery Manager 7.2.1
Ibm Tivoli Application Dependency Discovery Manager 7.2.1.5
Ibm Tivoli Application Dependency Discovery Manager 7.1.2.7
Ibm Tivoli Application Dependency Discovery Manager 7.1.2.8
Ibm Tivoli Application Dependency Discovery Manager 7.2.1.4
Ibm Tivoli Application Dependency Discovery Manager 7.2.0.1
Ibm Tivoli Application Dependency Discovery Manager 7.2.0.2
Ibm Tivoli Application Dependency Discovery Manager 7.2.0.9
Ibm Tivoli Application Dependency Discovery Manager 7.2.0.10
Ibm Tivoli Application Dependency Discovery Manager 7.1.2.5
Ibm Tivoli Application Dependency Discovery Manager 7.1.2.6
Ibm Tivoli Application Dependency Discovery Manager 7.2.0.5
Ibm Tivoli Application Dependency Discovery Manager 7.2.0.6
Ibm Tivoli Application Dependency Discovery Manager 7.1.2
7.5
CVSSv2
CVE-2013-2974
The BIRT viewer in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.1.x prior to 7.2.1.5 allows remote authenticated users to bypass authorization checks and obtain report-administration privileges, and consequently create or delete reports or conduct SQL injection...
Ibm Tivoli Application Dependency Discovery Manager 7.2.1.1
Ibm Tivoli Application Dependency Discovery Manager 7.2.1.2
Ibm Tivoli Application Dependency Discovery Manager 7.2.1.3
Ibm Tivoli Application Dependency Discovery Manager 7.2.1.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »