21 matches found
CVE-2026-11335
A flaw has been found in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. This impacts the function sessionstart of the file /login-form.php. Executing a manipulation of the argument UserAuthData can lead to session fixiation...
CVE-2025-11335
creationtimestamp| type| source ---|---|--- 2025-10-06 13:59:38+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115327577399848313...
Linux Distros Unpatched Vulnerability : CVE-2017-11335
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a heap based buffer overflow in tools/tiff2pdf.c of LibTIFF 4.0.8 via a PlanarConfig=Contig image, which causes a more than one hundred bytes...
CVE-2024-11335
The UltraEmbed – Advanced Iframe Plugin For WordPress with Gutenberg Block Included plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'iframe' shortcode in all versions up to, and including, 1.0.3 due to insufficient input sanitization and output escaping on user...
CVE-2024-11335
creationtimestamp| type| source ---|---|--- 2025-02-19 08:15:26+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lijdi36gjl2t 2025-02-19 08:41:08+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/4788 2025-02-19 15:39:51+00:00| seen|...
CVE-2024-11335 UltraEmbed – Advanced Iframe Plugin For WordPress with Gutenberg Block Included <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting
The UltraEmbed – Advanced Iframe Plugin For WordPress with Gutenberg Block Included plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'iframe' shortcode in all versions up to, and including, 1.0.3 due to insufficient input sanitization and output escaping on user...
CVE-2024-11335 UltraEmbed – Advanced Iframe Plugin For WordPress with Gutenberg Block Included <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting
The UltraEmbed – Advanced Iframe Plugin For WordPress with Gutenberg Block Included plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'iframe' shortcode in all versions up to, and including, 1.0.3 due to insufficient input sanitization and output escaping on user...
CVE-2024-11335
CVE-2024-11335 affects the WordPress plugin “UltraEmbed – Advanced Iframe Plugin For WordPress with Gutenberg Block Included.” It is vulnerable to a Stored Cross-Site Scripting (XSS) via the plugin’s iframe shortcode in all versions up to 1.0.3 due to insufficient input sanitization and output es...
CVE-2020-11335
CVE-2020-11335 is rejected/not used per the initial description; does not represent an active vulnerability entry.
CVE-2020-11335
...
Huawei EulerOS: Security Advisory for compat-libtiff3 (EulerOS-SA-2021-1285)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Design/Logic Flaw
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Studio Photo 3.6.6.922. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...
CVE-2020-17432
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Studio Photo 3.6.6.922. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...
EulerOS 2.0 SP3 : compat-libtiff3 (EulerOS-SA-2021-1062)
According to the versions of the compat-libtiff3 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - tools/tiffcrop.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service heap-based buffer over-read and buffer overflow o...
Huawei EulerOS: Security Advisory for compat-libtiff3 (EulerOS-SA-2021-1062)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-11335
GVToken Genesis Vision GVT is a smart contract running on Ethereum. The mint function has an integer overflow that allows minted tokens to be arbitrarily retrieved by the contract owner...
CVE-2018-11335
CVE-2018-11335 describes a vulnerability in GVToken Genesis Vision (GVT), a smart contract on Ethereum. The mint function contains an integer overflow that allows the contract owner to arbitrarily retrieve minted tokens. The issue is rooted in arithmetic handling within mint, enabling the owner t...
SUSE-SU-2018:1179-1 Security update for tiff
This update for tiff fixes the following issues: - CVE-2016-9453: The t2preadwritepdfimagetile function allowed remote attackers to cause a denial of service out-of-bounds write and crash or possibly execute arbitrary code via a JPEG file with a TIFFTAGJPEGTABLES of length one bsc1011107. -...
[SECURITY] [DSA 4100-1] tiff security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4100-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 27, 2018 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1094-1] tiff3 security update
Package : tiff3 Version : 3.9.6-11+deb7u8 CVE ID : CVE-2017-11335 Debian Bug : 868513 A heap based buffer overflow has been discovered in the tiff2pdf utility, part of the Tag Image File Format TIFF library. A PlanarConfig=Contig image can cause an out-of-bounds write related to the ZIPDecode...