JimuReport 漏洞列表
共找到 5 个与 JimuReport 相关的漏洞
📅 加载漏洞趋势中...
-
JimuReport v1.7.8 /jeecg-boot/jmreport/dict/list 权限绕过漏洞(CVE-2024-44893) 无POC
JimuReport(积木报表) 是一款类似excel操作风格、在线拖拽式的报表工具。一款免费的数据可视化报表,含报表、仪表盘和大屏设计,像搭建积木一样在线设计报表!功能涵盖,数据报表、打印设计、图表报表、大屏设计等。 -
CVE-2023-4450: JeecgBoot JimuReport - Template injection POC
A vulnerability was found in jeecgboot JimuReport up to 1.6.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Template Handler. The manipulation leads to injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. -
CVE-2023-4450: JeecgBoot JimuReport - Template injection POC
A vulnerability was found in jeecgboot JimuReport up to 1.6.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Template Handler. The manipulation leads to injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. -
JimuReport /jmreport/dict/list 存在权限管理不当漏洞 无POC
JimuReport是中国JEECG开源的一个免费报表工具。 JimuReport v1.7.8版本存在安全漏洞,该漏洞源于组件/jeecg-boot/jmreport/dict/list中存在问题,允许攻击者通过精心设计的GET请求提升权限。 -
JimuReport /jeecg-boot/jmreport/dict/list 权限绕过漏洞 无POC
JimuReport是中国JEECG开源的一个免费报表工具。 JimuReport v1.7.8版本存在安全漏洞,该漏洞源于组件/jeecg-boot/jmreport/dict/list中存在问题,允许攻击者通过精心设计的GET请求提升权限。