Reportico

Source repositories

CVE	Vendor / Product	Sev	Risk	CVSS	Published	Description
CVE-2024-31556	Reportico Web Reportico	Hig	0.44	7.8	May 14, 2024	An issue in Reportico Web before v.8.1.0 allows a local attacker to execute arbitrary code and obtain sensitive information via the sessionid function.
CVE-2023-47438	Reportico Web Reportico	Med	0.42	6.5	Mar 27, 2024	SQL Injection vulnerability in Reportico Till 8.1.0 allows attackers to obtain sensitive information or other system information via the project parameter.
CVE-2023-46925	Reportico Web Reportico		0.00	—	Nov 2, 2023	Reportico 7.1.21 is vulnerable to Cross Site Scripting (XSS).

CVE-2024-31556HigMay 14, 2024
Reportico Web
Reportico
risk 0.44cvss 7.8epss 0.00
An issue in Reportico Web before v.8.1.0 allows a local attacker to execute arbitrary code and obtain sensitive information via the sessionid function.
CVE-2023-47438MedMar 27, 2024
Reportico Web
Reportico
risk 0.42cvss 6.5epss 0.00
SQL Injection vulnerability in Reportico Till 8.1.0 allows attackers to obtain sensitive information or other system information via the project parameter.
CVE-2023-46925Nov 2, 2023
Reportico Web
Reportico
risk 0.00cvss —epss 0.00
Reportico 7.1.21 is vulnerable to Cross Site Scripting (XSS).