161 matches found
EUVD-2023-26438
Malicious code in bioql PyPI...
CVE-2010-2886
Multiple cross-site scripting XSS vulnerabilities in Adobe RoboHelp 7 and 8, and RoboHelp Server 7 and 8, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2013-5327
MDBMS.dll in Adobe RoboHelp 10 allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors...
CVE-2010-2885
Cross-site scripting XSS vulnerability in Adobe RoboHelp 7 and 8, and RoboHelp Server 7 and 8, allows remote attackers to inject arbitrary web script or HTML via vectors related to WebHelp generation with RoboHelp for Word...
The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server stems from insufficient validation of input data. This allows attackers to access confidential information.
The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain access to confidential information...
The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server lies in the lack of protective measures for SQL query structures, allowing attackers to gain unauthorized access to protected information.
The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server relates to the lack of protective measures for SQL query structures. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorize...
The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server arises from insufficient measures taken to protect the SQL query structure. This allows attackers to gain unauthorized access to protected information.
The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server relates to the lack of protective measures for SQL query structures. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorize...
Adobe RoboHelp Server Information Disclosure Vulnerability
Adobe RoboHelp Server is a server-based application for FrameMaker and RoboHelp enterprise users. An information disclosure vulnerability exists in Adobe RoboHelp Server, which can be exploited by an attacker to obtain sensitive information...
Adobe RoboHelp Server SQL Injection Vulnerability
Adobe RoboHelp Server is a server-based application for FrameMaker and RoboHelp enterprise users. An SQL injection vulnerability exists in Adobe RoboHelp Server. An attacker could use this vulnerability to view, add, modify, or delete information in the back-end database...
Adobe RoboHelp Server Path Traversal Vulnerability
Adobe RoboHelp Server is a server-based application for FrameMaker and RoboHelp enterprise users. A path traversal vulnerability exists in Adobe RoboHelp Server, which can be exploited by an attacker to execute arbitrary code on the system by sending a specially crafted URL request that contains...
Adobe RoboHelp Server < 11.5 Multiple Vulnerabilities (APSB23-53)
Adobe RoboHelp Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:robohelpserver"...
CVE-2023-22273
Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could lead to Remote Code Execution by an admin authenticated attacker. Exploitation of this issue does not require user interaction...
CVE-2023-22275
Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability that could lead to information disclosure by an unauthenticated attacker. Exploitation of this issue does not require user interactio...
CVE-2023-22274
Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Restriction of XML External Entity Reference 'XXE' vulnerability that could lead to information disclosure by an unauthenticated attacker. Exploitation of this issue does not require user interaction...
CVE-2023-22275
Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability that could lead to information disclosure by an unauthenticated attacker. Exploitation of this issue does not require user interactio...
CVE-2023-22268
Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability that could lead to information disclosure by an low-privileged authenticated attacker. Exploitation of this issue does not require us...
CVE-2023-22272
Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Input Validation vulnerability that could lead to information disclosure by an unauthenticated attacker. Exploitation of this issue does not require user interaction...
CVE-2023-22272
Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Input Validation vulnerability that could lead to information disclosure by an unauthenticated attacker. Exploitation of this issue does not require user interaction...
Sql injection
Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability that could lead to information disclosure by an low-privileged authenticated attacker. Exploitation of this issue does not require us...
Path traversal
Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could lead to Remote Code Execution by an admin authenticated attacker. Exploitation of this issue does not require user interaction...