CVE-2019-19160
5.7
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H
Summary
Reportexpress ProPlus contains a vulnerability that could allow an arbitrary code execution by inserted VBscript into the configure file(rxp).
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Cabsoftware | Reportexpress ProPlus | unspecified <= 3.0.0.62 | affected |
Weaknesses
- CWE-353: CWE-353 Missing Support for Integrity Check
ADP Enrichment
CVE Program Container
Additional References
- http://www.cabsoftware.com:8080/HomePage2015A/html/
- https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35474
References
- http://www.cabsoftware.com:8080/HomePage2015A/html/
- https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35474
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.