PT-2023-2370 · Imgproxy · Imgproxy

Name of the Vulnerable Software and Affected Versions: imgproxy versions prior to 3.14.0 Description: The issue is related to Cross-site Scripting XSS - Reflected, which can be exploited by a remote attacker to perform inter-site script attacks using a specially crafted svg file. This is due to...

PT-2022-5346 · Atlassian +6 · Confluence +8

Name of the Vulnerable Software and Affected Versions: Apache XML Graphics versions prior to 1.16 Confluence Data Center and Server versions 7.13.0 through 7.19.0, specifically versions prior to 7.19.16 Description: A vulnerability in the Apache Batik library for working with SVG images is relate...