CISA adds JasperReports vulnerabilities to its Known Exploited Vulnerabilities Catalog
CVE-2018-5430 resides in TIBCO JasperReports Server that may allow someone read-only access to the contents of the web application. CVE-2018-18809 in TIBCO JasperReports Library contains a directory-traversal vulnerability.