Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Remote Code Execution (RCE) vulnerability in /be/rpc.php in Jedox 2020.2.5 allows remote authenticated users to load arbitrary PHP classes from the 'rtn' directory and execute its methods. NOTE: The vendor states that the vulnerability affects installations running version 22.5 or earlier. The issue was resolved with version 23.2 and later versions are not affected.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Jedox 安全漏洞
Vulnerability Description
Jedox是Jedox公司的一种企业绩效管理软件。用于财务和其他领域(如销售,人力资源和采购)的计划,分析和报告。 Jedox 2022.4.2版本及之前版本存在安全漏洞。攻击者利用该漏洞从rtn目录加载任意PHP类并执行其方法。
CVSS Information
N/A
Vulnerability Type
N/A