VYPR

GridVis

by Janitza

CVEs (2)

  • CVE-2023-50895Mar 26, 2024
    risk 0.00cvss epss 0.01

    In Janitza GridVis through 9.0.66, exposed dangerous methods in the de.janitza.pasw.project.server.ServerDatabaseProject project load functionality allow remote authenticated administrative users to execute arbitrary Groovy code.

  • CVE-2023-50894Mar 26, 2024
    risk 0.00cvss epss 0.00

    In Janitza GridVis through 9.0.66, use of hard-coded credentials in the de.janitza.pasw.feature.impl.activators.PasswordEncryption password encryption function allows remote authenticated administrative users to discover cleartext database credentials contained in error report…