Skip to main content

Datagear

7 CVEs product

Monthly

CVE-2024-7552 MEDIUM POC This Month

A vulnerability was found in DataGear up to 5.0.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Java Information Disclosure Datagear
NVD VulDB
CVSS 4.0
5.3
EPSS
0.6%
CVE-2024-37759 CRITICAL POC Act Now

DataGear v5.0.0 and earlier was discovered to contain a SpEL (Spring Expression Language) expression injection vulnerability via the Data Viewing interface. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection Java Datagear
NVD GitHub
CVSS 3.1
9.8
EPSS
2.8%
CVE-2023-2042 MEDIUM POC This Month

A vulnerability, which was classified as problematic, has been found in DataGear up to 4.7.0/5.1.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Deserialization Datagear
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
1.1%
CVE-2023-1772 MEDIUM POC This Month

A vulnerability was found in DataGear up to 4.5.1. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Datagear
NVD GitHub VulDB
CVSS 3.1
4.8
EPSS
0.6%
CVE-2023-1573 MEDIUM POC This Month

A vulnerability was found in DataGear up to 1.11.1 and classified as problematic. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Datagear
NVD GitHub VulDB
CVSS 3.1
6.1
EPSS
0.6%
CVE-2023-1571 CRITICAL POC Act Now

A vulnerability, which was classified as critical, was found in DataGear up to 4.5.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Datagear
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-1572 MEDIUM POC PATCH This Month

A vulnerability has been found in DataGear up to 1.11.1 and classified as problematic. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Datagear
NVD GitHub VulDB
CVSS 3.1
5.4
EPSS
0.5%
EPSS 1% CVSS 5.3
MEDIUM POC This Month

A vulnerability was found in DataGear up to 5.0.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Java Information Disclosure Datagear
NVD VulDB
EPSS 3% CVSS 9.8
CRITICAL POC Act Now

DataGear v5.0.0 and earlier was discovered to contain a SpEL (Spring Expression Language) expression injection vulnerability via the Data Viewing interface. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection Java Datagear
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM POC This Month

A vulnerability, which was classified as problematic, has been found in DataGear up to 4.7.0/5.1.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Deserialization Datagear
NVD GitHub VulDB
EPSS 1% CVSS 4.8
MEDIUM POC This Month

A vulnerability was found in DataGear up to 4.5.1. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Datagear
NVD GitHub VulDB
EPSS 1% CVSS 6.1
MEDIUM POC This Month

A vulnerability was found in DataGear up to 1.11.1 and classified as problematic. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Datagear
NVD GitHub VulDB
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

A vulnerability, which was classified as critical, was found in DataGear up to 4.5.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Datagear
NVD GitHub VulDB
EPSS 1% CVSS 5.4
MEDIUM POC PATCH This Month

A vulnerability has been found in DataGear up to 1.11.1 and classified as problematic. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Datagear
NVD GitHub VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy