GCVE - cpe:2.3:a:anji-plus:aj-report:0.9.8.6:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:anji-plus:aj-report:0.9.8.6:*:*:*:*:*:*:*

part: a version: 0.9.8.6 update: *

Vendor	Anji Plus (`d70d0360-e0d2-5196-b555-6914d7e58ca2`)
Product	Aj Report (`49912093-c7ad-5d87-b56d-d34a5e56fa7c`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:gitee/anji-plus/report`	purl2cpe	2026-06-01 10:11:50.067007
`pkg:github/anji-plus/report`	purl2cpe	2026-06-01 10:11:50.067008

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-46973`	vulnerable	2026-06-08 05:50:39.770883	Details available Report v0.9.8.6 was discovered to contain a Server-Side Request Forgery (SSRF) vulnerability. Published: 2023-03-03T00:00:00.000Z Updated: 2025-03-07T16:28:57.425Z Open on db.gcve.eu Reference links https://github.com/anji-plus/report/issues/15 https://github.com/Fw-fW-fw/UPDATE-CVE/blob/main/CVE-2022-46973	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-42983`	vulnerable	2026-06-08 05:49:31.045789	Details available anji-plus AJ-Report 0.9.8.6 allows remote attackers to bypass login authentication by spoofing JWT Tokens. Published: 2022-10-17T00:00:00.000Z Updated: 2025-05-10T02:59:28.347Z Open on db.gcve.eu Reference links https://github.com/anji-plus/report/issues/7 https://gitee.com/anji-plus/report/issues/I5VVZ0	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.