Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Jaspersoft JasperReports 4.7 suffers from a saved credential disclosure vulnerability, which allows a remote authenticated user to retrieve stored Data Source passwords by accessing flow.html and reading the HTML source code of the page reached in an Edit action for a Data Source connector.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Jaspersoft JasperReports 信息泄露漏洞
Vulnerability Description
Jaspersoft JasperReports是美国Jaspersoft公司的一款报表生成工具,支持PDF、HTML、XLS、CSV和XML文件输出格式。 Jaspersoft JasperReports 4.7版本中存在信息泄露漏洞。远程攻击者可利用该漏洞检索存储的Data Source密码。
CVSS Information
N/A
Vulnerability Type
N/A