CVE-2020-27998: Missing Authorization in FastReport

Severity: Critical

CVSS Score: 9.8

An issue was discovered in FastReport before 2020.4.0. It lacks a ScriptSecurity feature and therefore may mishandle (for example) GetType, typeof, TypeOf, DllImport, LoadLibrary, and GetProcAddress.