cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2018-2406,https://securityvulnerability.io/vulnerability/CVE-2018-2406,,"Unquoted windows search path (directory/path traversal) vulnerability in Crystal Reports Server, OEM Edition (CRSE), 4.0, 4.10, 4.20, 4.30, startup path.",SAP,"SAP Crystal Reports Server, Oem Edition",5.3,MEDIUM,0.0005600000149570405,false,false,false,false,,false,false,2018-04-10T15:00:00.000Z,0
CVE-2011-4805,https://securityvulnerability.io/vulnerability/CVE-2011-4805,,Cross-site scripting (XSS) vulnerability in pubDBLogon.jsp in SAP Crystal Report Server 2008 allows remote attackers to inject arbitrary web script or HTML via the service parameter.,SAP,Crystal Reports Server,,,0.002580000087618828,false,false,false,false,,false,false,2011-12-14T00:00:00.000Z,0
CVE-2009-3346,https://securityvulnerability.io/vulnerability/CVE-2009-3346,,"Unspecified vulnerability in SAP Crystal Reports Server 2008 allows remote attackers to execute arbitrary code via unknown vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.3 through 8.11.  NOTE: as of 20090917, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.",SAP,Crystal Reports Server,,,0.029330000281333923,false,false,false,false,,false,false,2009-09-24T16:30:00.000Z,0
CVE-2009-3345,https://securityvulnerability.io/vulnerability/CVE-2009-3345,,"Heap-based buffer overflow in SAP Crystal Reports Server 2008 has unknown impact and attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.3 through 8.11.  NOTE: as of 20090917, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.",SAP,Crystal Reports Server,,,0.004350000061094761,false,false,false,false,,false,false,2009-09-24T16:30:00.000Z,0
CVE-2009-3344,https://securityvulnerability.io/vulnerability/CVE-2009-3344,,"Unspecified vulnerability in SAP Crystal Reports Server 2008 on Windows XP allows attackers to cause a denial of service (infinite loop) via unknown vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.3 through 8.11.  NOTE: as of 20090917, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.",SAP,Crystal Reports Server,,,0.0021899999119341373,false,false,false,false,,false,false,2009-09-24T16:30:00.000Z,0