CVE-2014-125034 stiiv contact_app View.php render cross site scripting

A vulnerability has been found in stiiv contactapp and classified as problematic. Affected by this vulnerability is the function render of the file libs/View.php. The manipulation of the argument var leads to cross site scripting. The attack can be launched remotely. The patch is named...

PT-2023-10104 · Unknown · Stiiv Contact App

Name of the Vulnerable Software and Affected Versions: stiiv contact app affected versions not specified Description: A vulnerability has been found in stiiv contact app and classified as problematic. The function render of the file libs/View.php is affected by this issue. The manipulation of the...

Denial Of Service

djvulibre is vulnerable to denial of service. The vulnerability exists due to an integer overflow in function render in tools/ddjvu via crafted djvu file that may lead to application crash and other consequences...

DEBIAN-CVE-2021-32491

A flaw was found in djvulibre-3.5.28 and earlier. An integer overflow in function render in tools/ddjvu via crafted djvu file may lead to application crash and other consequences...

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound. A flaw was found in djvulibre-3.5.28 and earlier. An integer overflow in function render in tools/ddjvu via crafted djvu file may lead to application crash and other consequences. Remediation A fix was...

UBUNTU-CVE-2021-32491

A flaw was found in djvulibre-3.5.28 and earlier. An integer overflow in function render in tools/ddjvu via crafted djvu file may lead to application crash and other consequences...

PT-2021-3123

Name of the Vulnerable Software and Affected Versions DjVuLibre versions 3.5.28 and earlier Description The issue is related to an integer overflow in the render function in the tools/ddjvu component of DjVuLibre. This can be exploited by a remote attacker using a crafted djvu file, potentially...

Cross-site Scripting (XSS)

m-server is vulnerable to cross-site scripting XSS. The vulnerability exists as it does not sanitize the value of path in the render function of lib/utils.js...

UBUNTU-CVE-2020-8163

The is a code injection vulnerability in versions of Rails prior to 5.0.1 that wouldallow an attacker who controlled the locals argument of a render call to perform a RCE...

CVE-2018-10111

An issue was discovered in GEGL through 0.3.32. The renderrectangle function in process/gegl-processor.c has unbounded memory allocation, leading to a denial of service application crash upon allocation failure...

Denial of Service (DoS)

Overview ejs is a popular JavaScript templating engine. Affected versions of the package are vulnerable to Denial of Service by letting the attacker under certain conditions control and override the localNames option causing it to crash. You can read more about this vulnerability on the Snyk blog...