Reportexpress ProPlus contains a vulnerability that could allow an arbitrary code execution by inserted VBscript into the configure file(rxp).
The product uses a transmission protocol that does not include a mechanism for verifying the integrity of the data during transmission, such as a checksum.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Reportexpress_proplus | Cabsoftware | * | 3.0.0.62 (excluding) |