|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-06-11 | |
| Rule Name: | Raqsoft Report InputServlet Arbitrary File Read Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Raqsoft report is an Excel-like report tool, which is more compatible with excel and convenient for users to design complex reports. There is an arbitrary file reading vulnerability in Raqsoft report platform. The vulnerability is due to the InputServlet interface of the system does not effectively filter user input, so that attackers can read arbitrary files through directory traversal. | |
| Impact: | An attacker could exploit this vulnerability to have unspecified effect. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |