Vulnerabilities > Jedox > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-12 | CVE-2022-47879 | Unspecified vulnerability in Jedox and Jedox Cloud A Remote Code Execution (RCE) vulnerability in /be/rpc.php in Jedox 2020.2.5 allows remote authenticated users to load arbitrary PHP classes from the 'rtn' directory and execute its methods. | 7.5 |
| 2023-05-02 | CVE-2022-47875 | Path Traversal vulnerability in Jedox Cloud and Jedox A Directory Traversal vulnerability in /be/erpc.php in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to execute arbitrary code. | 8.8 |
| 2023-05-02 | CVE-2022-47876 | Unspecified vulnerability in Jedox 2020.2.5 The integrator in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to create Jobs to execute arbitrary code via Groovy-scripts. | 8.8 |
| 2023-05-02 | CVE-2022-47878 | Unrestricted Upload of File with Dangerous Type vulnerability in Jedox 2020.2.5 Incorrect input validation for the default-storage-path in the settings page in Jedox 2020.2.5 allows remote, authenticated users to specify the location as Webroot directory. | 8.8 |