4 matches found
CVE-2024-55279
CVE-2024-55279 affects Uguu up to version 1.8.9. The issue is a Cross-Site Scripting (XSS) vulnerability via JavaScript in XML files, as described across multiple feeds (NVD, Red Hat, CVE lists). Affected product: Uguu 1.8.9 and earlier; vulnerability stems from handling of JavaScript in XML file...
The vulnerability of the digital signature and XML encryption library for Node.js’ xml-crypto, related to improper verification of cryptographic signatures, allows attackers to forge digital signatures.
The vulnerability of the digital signature and encryption library for Node.js’ xml-crypto is related to improper validation of the cryptographic signature. Exploiting this vulnerability allows a malicious actor to forge digital signatures by inserting a newly created, specially crafted signature...
Prestashop SQL Injection Vulnerability
PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides a variety of payment methods, short message alerts and product image scaling and other features. A security vulnerability exists in Prestashop aioptimizedcombinations versions prior ...
OPENSUSE-SU-2020:0233-1 Security update for chromium, re2
This update for chromium, re2 fixes the following issues: - Update to 80.0.3987.87 boo1162833: CVE-2020-6381: Integer overflow in JavaScript CVE-2020-6382: Type Confusion in JavaScript CVE-2019-18197: Multiple vulnerabilities in XML CVE-2019-19926: Inappropriate implementation in SQLite...