Vulnerabilities > Dataease Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-07-22	CVE-2022-34112	Incorrect Permission Assignment for Critical Resource vulnerability in Dataease Project Dataease 1.11.1 An access control issue in the component /api/plugin/uninstall Dataease v1.11.1 allows attackers to arbitrarily uninstall the plugin, a right normally reserved for the administrator. network low complexity dataease-project CWE-732	6.5
2022-07-22	CVE-2022-34114	SQL Injection vulnerability in Dataease Project Dataease 1.11.1 Dataease v1.11.1 was discovered to contain a SQL injection vulnerability via the parameter dataSourceId. network low complexity dataease-project CWE-89	8.8
2022-07-22	CVE-2022-34115	Unrestricted Upload of File with Dangerous Type vulnerability in Dataease Project Dataease 1.11.1 DataEase v1.11.1 was discovered to contain a arbitrary file write vulnerability via the parameter dataSourceId. network low complexity dataease-project CWE-434 critical	9.8

Vulnerabilities > Dataease Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Dataease Project"}]}