CVE-2020-24984

EPSS 0.34% · P57 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-24984

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

An issue was discovered in Quadbase EspressReports ES 7 Update 9. It allows CSRF, whereby an attacker may be able to trick an authenticated admin level user into uploading malicious files to the web server.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Quadbase EspressReports ES 跨站请求伪造漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Quadbase EspressReports ES是美国（Quadbase）公司的一个应用软件。提供了一些特殊的报告和查询功能，使用户可以通过零客户端浏览器界面创建各种查询和报告。 Quadbase EspressReports ES 7 Update 9 存在跨站请求伪造漏洞，攻击者可利用该漏洞可以欺骗经过身份验证的管理员级别用户向web服务器上传恶意文件。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-24984

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-24984

请登录查看更多情报信息。

https://c41nc.co.uk/cve-2020-24984/x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2020-24984

Same Patch Batch · n/a · 2021-03-11 · 29 CVEs total

CVE-2020-29045		WordPress 代码问题漏洞
CVE-2021-27919		Google Golang 安全漏洞
CVE-2021-28134		Akash Rajpurohit clipper 安全漏洞
CVE-2021-28132		LUCY Security Awareness Software 操作系统命令注入漏洞
CVE-2021-28144		D-Link DIR-3060 命令注入漏洞
CVE-2021-26776		CSZ CMS 跨站脚本漏洞
CVE-2021-27677		Batflat CMS 跨站脚本漏洞
CVE-2021-27678		Pawe? Klockiewicz Batflat CMS 跨站脚本漏洞
CVE-2021-27679		Pawe? Klockiewicz Batflat CMS 跨站脚本漏洞
CVE-2021-28088		ImpressCMS 跨站脚本漏洞
CVE-2021-28141		Progress Telerik UI for ASP.NET AJAX 安全漏洞
CVE-2020-14987		Bloomreach Experience Manager 安全漏洞
CVE-2020-14988		Bloomreach Experience Manager 跨站脚本漏洞
CVE-2020-14989		Bloomreach Experience Manager 跨站请求伪造漏洞
CVE-2020-36278		Dan Bloomberg Leptonica 缓冲区错误漏洞
CVE-2021-20261		Linux kernel 竞争条件问题漏洞
CVE-2021-22714		Schneider Electric PowerLogic 缓冲区错误漏洞
CVE-2021-22713		Schneider Electric PowerLogic 缓冲区错误漏洞
CVE-2021-22711		Schneider Electric Interactive Graphical SCADA System 缓冲区错误漏洞
CVE-2020-36277		Dan Bloomberg Leptonica 安全漏洞

Showing top 20 of 29 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-24984

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-24984

I. Basic Information for CVE-2020-24984

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-24984

III. Intelligence Information for CVE-2020-24984

Same Patch Batch · n/a · 2021-03-11 · 29 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-24984

Leave a comment