273 matches found
EUVD-2022-52501
Malicious code in bioql PyPI...
EUVD-2023-26438
Malicious code in bioql PyPI...
EUVD-2022-28291
Malicious code in bioql PyPI...
EUVD-2023-26439
Malicious code in bioql PyPI...
CVE-2010-2886
Multiple cross-site scripting XSS vulnerabilities in Adobe RoboHelp 7 and 8, and RoboHelp Server 7 and 8, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2013-5327
MDBMS.dll in Adobe RoboHelp 10 allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors...
CVE-2010-2885
Cross-site scripting XSS vulnerability in Adobe RoboHelp 7 and 8, and RoboHelp Server 7 and 8, allows remote attackers to inject arbitrary web script or HTML via vectors related to WebHelp generation with RoboHelp for Word...
The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server stems from insufficient validation of input data. This allows attackers to access confidential information.
The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain access to confidential information...
The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server arises from incorrect restrictions on path names to restricted access catalogs. This allows attackers to execute arbitrary code.
The vulnerability of server-based corporate software for project monitoring and management in Adobe RoboHelp Server relates to incorrect path name restrictions for restricted access directories. Exploitation of this vulnerability could allow an attacker to execute arbitrary code remotely...
The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server arises from insufficient measures taken to protect the SQL query structure. This allows attackers to gain unauthorized access to protected information.
The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server relates to the lack of protective measures for SQL query structures. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorize...
The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server stems from improper restrictions on XML links to external objects. This allows attackers to gain unauthorized access to protected information or cause service failures.
The vulnerability of server-based corporate software for project monitoring and management in Adobe RoboHelp Server relates to incorrect restrictions on XML links to external objects. Exploitation of this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access...
The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server lies in the lack of protective measures for SQL query structures, allowing attackers to gain unauthorized access to protected information.
The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server relates to the lack of protective measures for SQL query structures. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorize...
Adobe RoboHelp Server SQL Injection Vulnerability
Adobe RoboHelp Server is a server-based application for FrameMaker and RoboHelp enterprise users. An SQL injection vulnerability exists in Adobe RoboHelp Server. An attacker could use this vulnerability to view, add, modify, or delete information in the back-end database...
Adobe RoboHelp Server Path Traversal Vulnerability
Adobe RoboHelp Server is a server-based application for FrameMaker and RoboHelp enterprise users. A path traversal vulnerability exists in Adobe RoboHelp Server, which can be exploited by an attacker to execute arbitrary code on the system by sending a specially crafted URL request that contains...
Adobe RoboHelp Server Information Disclosure Vulnerability
Adobe RoboHelp Server is a server-based application for FrameMaker and RoboHelp enterprise users. An information disclosure vulnerability exists in Adobe RoboHelp Server, which can be exploited by an attacker to obtain sensitive information...
Adobe RoboHelp SQL Injection Vulnerability
Adobe RoboHelp is a help authoring tool developed and released for Windows by the American company Audobee Adobe. Adobe RoboHelp Server suffers from a SQL injection vulnerability that stems from the application's lack of validation of externally entered SQL statements. An attacker can exploit the...
Adobe RoboHelp Server < 11.3 Improper Authorization Vulnerability (APSB22-31)
Adobe RoboHelp Server is prone to an improper authorization vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Adobe RoboHelp Server < 11.5 Multiple Vulnerabilities (APSB23-53)
Adobe RoboHelp Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:robohelpserver"...
CVE-2023-22275
Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability that could lead to information disclosure by an unauthenticated attacker. Exploitation of this issue does not require user interactio...
CVE-2023-22273
Adobe RoboHelp Server versions 11.4 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could lead to Remote Code Execution by an admin authenticated attacker. Exploitation of this issue does not require user interaction...