RSS   Vulnerabilities for 'I-net clear reports'   RSS

2021-03-09
 
CVE-2020-28150

CWE-601
 

 
I-Net Software Clear Reports 20.10.136 web application accepts a user-controlled input that specifies a link to an external site, and uses the user supplied data in a Redirect.

 
2020-07-15
 
CVE-2020-12684

CWE-611
 

 
XXE injection can occur in i-net Clear Reports 2019 19.0.287 (Designer), as used in i-net HelpDesk and other products, when XML input containing a reference to an external entity is processed by a weakly configured XML parser.

 

 >>> Vendor: Inetsoftware 4 Products
Helpdesk
Clear reports
PDFC
I-net clear reports


Copyright 2024, cxsecurity.com

 

Back to Top