OpenProject 跨站脚本漏洞

OpenProject is an open-source web-based project management software. Versions of OpenProject prior to 17.2.0 had a cross-site scripting vulnerability. This vulnerability stemmed from improper Markdown rendering validation in OpenProject, especially in the handling of hyperlinks. It could allow...

CVE-2024-12251

In Progress® Telerik® UI for WinUI versions prior to 2025 Q1 3.0.0, a command injection attack is possible through improper neutralization of hyperlink elements...

CVE-2024-12251

In Progress Telerik UI for WinUI versions prior to 2025 Q1 3.0.0, a command injection attack is possible through improper neutralization of hyperlink elements...

PT-2025-6516

Name of the Vulnerable Software and Affected Versions Progress Telerik UI for WinUI versions prior to 2025 Q1 3.0.0 Description A command injection attack is possible through improper neutralization of hyperlink elements. This issue allows for a command injection attack, potentially leading to...

PT-2024-38429 · Telerik · Telerik Ui For Wpf

Name of the Vulnerable Software and Affected Versions: Telerik UI for WPF versions prior to 2024 Q3 2024.3.924 Description: A command injection attack is possible due to improper neutralization of hyperlink elements. This issue arises from the improper handling of certain elements, allowing for...

PT-2024-38501 · Progress · Telerik Ui For Winforms

Name of the Vulnerable Software and Affected Versions: Telerik UI for WinForms versions prior to 2024 Q3 2024.3.924 Description: A command injection attack is possible through improper neutralization of hyperlink elements. This issue affects earlier versions of Progress Telerik UI for WinForms,...

CVE-2023-3434

Improper Input Validation in the hyperlink interpretation in Savoir-faire Linux's Jami version 20222284 on Windows. This allows an attacker to send a custom HTML anchor tag to pass a string value to the Windows QRC Handler through the Jami messenger...

Adobe InDesign Insecure Hyperlink Handling Vulnerability

Adobe InDesign is a desktop publishing DTP application from Adobe that is primarily used for typesetting and editing a variety of printed materials. An insecure hyperlink handling vulnerability exists in Adobe InDesign 14.0.1 and earlier versions. An attacker could exploit this vulnerability to...

Debian Security Advisory DSA 158-1 (gaim)

The remote host is missing an update to gaim announced via advisory DSA 158-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Hyperlink Object Library buffer overflow

Overview A buffer overflow exists in the Microsoft Windows system library used when handling hyperlinks. All currently supported versions of Microsoft Windows are affected. Description An unchecked buffer in the Microsoft Object Library is vulnerable to attack when malformed hyperlinks are handle...

[SECURITY] [DSA 158-1] New gaim packages fix arbitrary program execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 158-1 [email protected] http://www.debian.org/security/ Martin Schulze August 27th, 2002 http://www.debian.org/security/faq -...

DSA-158 gaim - arbitrary program execution

Bulletin has no description...