Vulnerabilities (CVE)

Filtered by vendor Inetsoftware Subscribe
Filtered by product I-net Clear Reports
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-28150 1 Inetsoftware 1 I-net Clear Reports 2024-11-21 5.8 MEDIUM 6.1 MEDIUM
I-Net Software Clear Reports 20.10.136 web application accepts a user-controlled input that specifies a link to an external site, and uses the user supplied data in a Redirect.
CVE-2020-12684 1 Inetsoftware 1 I-net Clear Reports 2024-11-21 7.5 HIGH 9.8 CRITICAL
XXE injection can occur in i-net Clear Reports 2019 19.0.287 (Designer), as used in i-net HelpDesk and other products, when XML input containing a reference to an external entity is processed by a weakly configured XML parser.