This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Grapecity First view 2011-04-09
Product Data Dynamics Reports Last view 2011-04-09
Version Type Application
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:grapecity:data_dynamics_reports:1.0.175.0:beta:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.0.63.0:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.0.128.0:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.0.546.0:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.5.711.0:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.6.1818.8:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.6.1871.8:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:0.5.125.0:beta1:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.0.236.0:beta:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.0.261.0:rc:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.0.342.0:rc:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.5.866.0:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.5.905.0:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.0.195.0:beta:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.5.750.0:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.5.807.0:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.6.1871.24:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.6.1871.45:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:0.5.142.0:beta2:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.0.30.0:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.0.419.0:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.0.441.0:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.5.1052.0:*:*:*:*:*:*:* 1
cpe:2.3:a:grapecity:data_dynamics_reports:1.6.1818.0:*:*:*:*:*:*:* 1

Related : CVE

  Date Alert Description
4.3 2011-04-09 CVE-2011-1660

Multiple cross-site scripting (XSS) vulnerabilities in the DataDynamics.Reports.Web class library in GrapeCity Data Dynamics Reports before 1.6.2084.14 allow remote attackers to inject arbitrary web script or HTML via (1) the reportName or (2) uniqueId parameter to CoreViewerInit.js, or the (3) uniqueId or (4) traceLevel parameter to CoreController.js, as reachable by CoreHandler.ashx.

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')

Open Source Vulnerability Database (OSVDB)

id Description
71488 Data Dynamics Reports CoreHandler.ashx Multiple Parameter XSS