Eng - Spagobi CVE

Filtered by vendor Eng Subscribe

Filtered by product Spagobi

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2013-6231	1 Eng	1 Spagobi	2020-01-21	9.0 HIGH	8.8 HIGH
SpagoBI before 4.1 has Privilege Escalation via an error in the AdapterHTTP script
CVE-2013-6234	1 Eng	1 Spagobi	2019-12-04	6.0 MEDIUM	8.0 HIGH
Unrestricted file upload vulnerability in the Worksheet designer in SpagoBI before 4.1 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in an unspecified directory, aka "XSS File Upload."

Vulnerabilities (CVE)