Known Vulnerabilities for Reports by Stimulsoft
Listed below are 2 of the newest known vulnerabilities associated with "Reports" by "Stimulsoft".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-59709 json | Ghostfolio's PUT /api/v1/portfolio/holding/:dataSource/:symbol/tags endpoint fails to verify Access.permissions field when pr... | Not Provided | 2026-07-07 | 2026-07-09 |
| CVE-2026-58373 json | CVAT before 2.69.0 contains an improper authorization vulnerability in QualityReportViewSet.get_queryset that allows authenti... | Not Provided | 2026-06-30 | 2026-07-14 |
| CVE-2026-56424 json | MISP core contained multiple broken access-control flaws where authorization checks were performed against the wrong entity, ... | Not Provided | 2026-06-22 | 2026-06-23 |
| CVE-2026-56423 json | MISP Core contained broken access-control checks in the bulk deletion flows for Event Reports and Sharing Groups. The affect... | Not Provided | 2026-06-22 | 2026-06-23 |
| CVE-2026-55515 json | Snipe-IT is an IT asset/license management system. Prior to 8.6.2, the unaccepted-assets report delete endpoint authorizes on... | Not Provided | 2026-07-10 | 2026-07-13 |
| CVE-2026-55466 json | Snipe-IT is an IT asset/license management system. Prior to 8.6.2, UploadFileRequest sanitizes SVG content only when PHP finf... | Not Provided | 2026-07-10 | 2026-07-13 |
| CVE-2026-53873 json | picklescan before 1.0.4 contains an incomplete blocklist for the profile module that fails to block the module-level profile.... | Not Provided | 2026-06-17 | 2026-06-17 |
| CVE-2026-53646 json | FOSSBilling is a free, open-source billing and client management system. In versions 0.5.6 through 0.7.2, when a `ClientPassw... | Not Provided | 2026-07-06 | 2026-07-07 |
| CVE-2026-53360 json | In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Require in-GHCB scratch area if GHCB v2+ is in... | Not Provided | 2026-07-04 | 2026-07-04 |
| CVE-2026-53357 json | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix UAF in l2cap_sock_cleanup_listen() vs l2c... | Not Provided | 2026-07-02 | 2026-07-02 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Stimulsoft | Reports | 2013.1.1600.0 |