5 matches found
PT-2024-36610 · Unknown · Graphics::Colornames
Name of the Vulnerable Software and Affected Versions: Graphics::ColorNames versions prior to 3.2.0 Description: The issue is related to an ambiguity between modules and filenames in the Graphics::ColorNames package for Perl, which can lead to HTML injection by an attacker who can create a file i...
PT-2024-35082 · Comodo · Itop
Name of the Vulnerable Software and Affected Versions: Combodo iTop versions prior to 3.2.0 Description: The issue allows an attacker accessing a backup file or the database to read some passwords for misconfigured users. This is due to the storage of sensitive data in cleartext. The impact of th...
CVE-2022-46783
An issue was discovered in Stormshield SSL VPN Client before 3.2.0. If multiple address books are used, an attacker may be able to access the other encrypted address book...
CVE-2023-3469
Cross-site Scripting XSS - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta.2...
CVE-2023-2752 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta...