CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-7314

anji-plus AJ-Report is affected by an authentication bypass vulnerability. A remote and unauthenticated attacker can append ";swagger-ui" to HTTP requests to bypass authentication and execute arbitrary Java on the victim server.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.759

EPSS Ranking 98.8%

CVSS Severity

CVSS v3 Score 9.8

References

Products affected by CVE-2024-7314

Anji-Plus » Report » Version: N/A

cpe:2.3:a:anji-plus:report:-
Anji-Plus » Report » Version: 0.9.1

cpe:2.3:a:anji-plus:report:0.9.1
Anji-Plus » Report » Version: 0.9.2

cpe:2.3:a:anji-plus:report:0.9.2
Anji-Plus » Report » Version: 0.9.3

cpe:2.3:a:anji-plus:report:0.9.3
Anji-Plus » Report » Version: 0.9.4

cpe:2.3:a:anji-plus:report:0.9.4
Anji-Plus » Report » Version: 0.9.4.1

cpe:2.3:a:anji-plus:report:0.9.4.1
Anji-Plus » Report » Version: 0.9.4.2

cpe:2.3:a:anji-plus:report:0.9.4.2
Anji-Plus » Report » Version: 0.9.5

cpe:2.3:a:anji-plus:report:0.9.5
Anji-Plus » Report » Version: 0.9.6

cpe:2.3:a:anji-plus:report:0.9.6
Anji-Plus » Report » Version: 0.9.6.1

cpe:2.3:a:anji-plus:report:0.9.6.1
Anji-Plus » Report » Version: 0.9.7

cpe:2.3:a:anji-plus:report:0.9.7
Anji-Plus » Report » Version: 0.9.7.2

cpe:2.3:a:anji-plus:report:0.9.7.2
Anji-Plus » Report » Version: 0.9.7.3

cpe:2.3:a:anji-plus:report:0.9.7.3
Anji-Plus » Report » Version: 0.9.8

cpe:2.3:a:anji-plus:report:0.9.8
Anji-Plus » Report » Version: 0.9.8.1

cpe:2.3:a:anji-plus:report:0.9.8.1
Anji-Plus » Report » Version: 0.9.8.5

cpe:2.3:a:anji-plus:report:0.9.8.5
Anji-Plus » Report » Version: 0.9.8.6

cpe:2.3:a:anji-plus:report:0.9.8.6
Anji-Plus » Report » Version: 0.9.9

cpe:2.3:a:anji-plus:report:0.9.9
Anji-Plus » Report » Version: 1.0.0

cpe:2.3:a:anji-plus:report:1.0.0
Anji-Plus » Report » Version: 1.1.0

cpe:2.3:a:anji-plus:report:1.1.0
Anji-Plus » Report » Version: 1.2.0

cpe:2.3:a:anji-plus:report:1.2.0
Anji-Plus » Report » Version: 1.2.1

cpe:2.3:a:anji-plus:report:1.2.1
Anji-Plus » Report » Version: 1.3.0

cpe:2.3:a:anji-plus:report:1.3.0
Anji-Plus » Report » Version: 1.4.0

cpe:2.3:a:anji-plus:report:1.4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-7314

Products

Pricing

Contact Us