← Back

Espressreport Enterprise Server

espressreport_enterprise_server

Vendor: Quadbase • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-9958
1Quadbase
1Espressreport Enterprise Server
Jun 17, 2026
Jun 24, 2019
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
CSRF within the admin panel in Quadbase EspressReport ES (ERES) v7.0 update 7 allows remote attackers to escalate privileges, or create new admin accounts by crafting a malicious web page that issues specific requests, u...Show more
CSRF within the admin panel in Quadbase EspressReport ES (ERES) v7.0 update 7 allows remote attackers to escalate privileges, or create new admin accounts by crafting a malicious web page that issues specific requests, using a target admin's session to process their requests.Show less