CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2004-1981
https://notcve.org/view.php?id=CVE-2004-1981
02 May 2004 — The web interface for Crystal Reports allows remote attackers to cause a denial of service (disk exhaustion) by repeatedly requesting reports without retrieving the associated image files, which are not cleared from the image file folder. • http://marc.info/?l=bugtraq&m=108360413811017&w=2 •
CVSS: 9.1EPSS: 1%CPEs: 1EXPL: 0CVE-2003-1249
https://notcve.org/view.php?id=CVE-2003-1249
31 Dec 2003 — WebIntelligence 2.7.1 uses guessable user session cookies, which allows remote attackers to hijack sessions. • http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0014.html •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2001-1464
https://notcve.org/view.php?id=CVE-2001-1464
10 Jan 2001 — Crystal Reports, when displaying data for a password protected database using HTML pages, embeds the username and password in cleartext in the HTML page and the URL, which allows remote attackers to obtain passwords. • http://www.kb.cert.org/vuls/id/403307 •