CVE-2020-25902

Blackboard Collaborate Ultra 20.02 is affected by a cross-site scripting (XSS) vulnerability. The XSS payload can execute in the classroom context, leading to theft of cookies from users who join the class. Multiple sources corroborate the issue across CVE-2020-25902, Red Hat security, CNVD, and ...

PT-2021-11201 · Blackboard · Blackboard Collaborate Ultra

Name of the Vulnerable Software and Affected Versions: Blackboard Collaborate Ultra version 20.02 Description: The issue concerns a cross-site scripting XSS vulnerability. This vulnerability allows the execution of an XSS payload in the classroom, potentially leading to the theft of cookies from...

SUSE-SU-2020:1554-1 Security update for slurm_20_02

This update for slurm2002 to version 20.02.3 fixes the following issues: Security issue fixed: - CVE-2020-12693: Fixed an authentication bypass via an alternate path or channel bsc1172004...

CVE-2020-12693

Slurm 19.05.x before 19.05.7 and 20.02.x before 20.02.3, in the rare case where Message Aggregation is enabled, allows Authentication Bypass via an Alternate Path or Channel. A race condition allows a user to launch a process as an arbitrary user...

Race condition

Slurm 19.05.x before 19.05.7 and 20.02.x before 20.02.3, in the rare case where Message Aggregation is enabled, allows Authentication Bypass via an Alternate Path or Channel. A race condition allows a user to launch a process as an arbitrary user...

Computerinsel Photoline PCX Parsing Code Execution Vulnerability

Summary An memory corruption vulnerability exists in the .PCX parsing functionality of Computerinsel Photoline 20.02. A specially crafted .PCX file can cause a vulnerability resulting in potential code execution. An attacker can send a specific .PCX file to trigger this vulnerability. Tested...

Computerinsel Photoline Remote Code Execution Vulnerability

Computerinsel Photoline is a suite of image editing software. A remote code execution vulnerability exists in the .GIF parsing feature in Computerinsel Photoline version 20.02. A remote attacker can exploit this vulnerability by sending a specially crafted .GIF file to execute code write across...

Computerinsel Photoline Remote Code Execution Vulnerability (CNVD-2017-30860)

Computerinsel Photoline is a suite of image editing software. A remote code execution vulnerability exists in the .GIF parsing feature in Computerinsel Photoline version 20.02. A remote attacker can exploit this vulnerability by sending a specially crafted .GIF file to execute code...

Memory corruption

An memory corruption vulnerability exists in the .SVG parsing functionality of Computerinsel Photoline 20.02. A specially crafted .SVG file can cause a vulnerability resulting in memory corruption, which can potentially lead to arbitrary code execution. An attacker can send a specific .SVG file t...

Memory corruption

A memory corruption vulnerability exists in the .TGA parsing functionality of Computerinsel Photoline 20.02. A specially crafted .TGA file can cause an out of bounds write resulting in potential code execution. An attacker can send a specific .TGA file to trigger this vulnerability...

CVE-2017-2880

An memory corruption vulnerability exists in the .GIF parsing functionality of Computerinsel Photoline 20.02. A specially crafted .GIF file can cause a vulnerability resulting in potential code execution. An attacker can send specific .GIF file to trigger this vulnerability...

CVE-2017-2920

Summary (CVE-2017-2920): A memory corruption vulnerability in the tag parsing functionality of LibOFX (OFX processing library) can be triggered by specially crafted OFX/.SVG-derivative inputs, potentially allowing out-of-bounds writes. Documented in multiple advisories (Mageia, openSUSE, SUSE, Ge...

Computerinsel Photoline TGA Parsing Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the .TGA parsing functionality of Computerinsel Photoline 20.02. A specially crafted .TGA file can cause an out of bounds write resulting in potential code execution. An attacker can send a specific .TGA file to trigger this vulnerability. Teste...