VYPR

Jasperreports

by Jaspersoft

Source repositories

CVEs (2)

  • CVE-2017-14941MedOct 2, 2017
    risk 0.42cvss 6.5epss 0.01

    Jaspersoft JasperReports 4.7 suffers from a saved credential disclosure vulnerability, which allows a remote authenticated user to retrieve stored Data Source passwords by accessing flow.html and reading the HTML source code of the page reached in an Edit action for a Data…

  • CVE-2025-10492Sep 16, 2025
    risk 0.00cvss epss 0.01

    A Java deserialisation vulnerability has been discovered in Jaspersoft Library. Improper handling of externally supplied data may allow attackers to execute arbitrary code remotely on systems that use the affected library