Filter
-Infinity
0
Trending
Software
maven/io.dataease:commonDataEase's H2 datasource has a remote command execution risk
9.8
First published (updated )
DataeaseDataease PostgreSQL Data Source JDBC Connection Parameters Not Verified Leads to Deserialization Vulnerability
9.8
First published (updated )
DataeaseDataEase has a forged JWT token vulnerability
9.8
First published (updated )
DataeaseDataEase has an unauthorized vulnerability
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
DataeaseDataEase has an improper authentication vulnerability
9.8
EPSS
0.08%
First published (updated )
DataeaseDataEase data source has deserialization vulnerability
9.8
First published (updated )
DataeaseDataEase has a SQL injection vulnerability that can bypass blacklists
9.8
First published (updated )
DataeaseDataease Mysql Data Source JDBC Connection Parameters Not Verified Leads to Deserialization Vulnerability
9.8
First published (updated )
maven/io.dataease:dataease-plugin-commonCode Injection
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
DataeaseSQL injection vulnerability due to the keyword blacklist for defending against SQL injection will be bypassed
9.8
First published (updated )
DataeaseDataease arbitrary interface access vulnerability
9.3
First published (updated )
DataeaseThe Dataease datasource exists deserialization and arbitrary file read vulnerability
9.1
EPSS
0.05%
First published (updated )
DataeaseDataease Redshift Data Source JDBC Connection Parameters Not Verified Leads to RCE Vulnerability
8.8
First published (updated )
DataeaseIn DataEase v1.6.1, an authenticated user can gain unauthorized access to all user information and c…
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
DataeaseDataEase AWS redshift data source exists for remote code execution vulnerability
8.8
First published (updated )
DataeaseDataease Mysql JDBC Connection Parameters Not Verified Leads to Deserialization and Arbitrary File Read Vulnerability
8.6
First published (updated )
DataeaseDataease H2 JDBC Connection Remote Code Execution
8.2
EPSS
0.05%
First published (updated )
maven/io.dataease:dataease-plugin-commonDataEase API interface has IDOR vulnerability
8.1
First published (updated )
DataeaseUnauthorized users can delete applications in DataEase
8.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/io.dataease:dataease-plugin-commonSQL Injection
7.5
First published (updated )
maven/io.dataease:commonDataEase has an XXE vulnerability
7.5
First published (updated )
DataeaseDataEase has a vulnerability to obtain user cookies
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
DataeaseDataEase Mysql JDBC Connection Parameters Not Being Verified Leads to Arbitrary File Read Vulnerability
7.3
First published (updated )
DataeaseDataease Mysql JDBC Connection Parameters Not Being Verified Leads to Arbitrary File Read Vulnerability
7.3
EPSS
0.04%
First published (updated )
DataeaseDataEase dashboard has a stored XSS vulnerability
7.2
First published (updated )
DataeaseDataease file upload interface does not verify permission or file type
6.5
First published (updated )
DataeaseDataEase has a privilege bypass vulnerability
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.