PT-2023-7076 · Adobe · Robohelp Server

Name of the Vulnerable Software and Affected Versions: Adobe RoboHelp Server versions 11.4 and earlier Description: The issue is related to an Improper Restriction of XML External Entity Reference 'XXE' vulnerability. This could lead to information disclosure by an unauthenticated attacker...

APSB23-53 : Security update available for Adobe RoboHelp Server

Adobe has released a security update for RoboHelp Server. This update resolves vulnerabilities rated critical and important. Successful exploitation could lead to arbitrary code execution and memory leak in the context of the current user...

Zimbra Collaboration Server 8.8.x < 8.8.15 Patch 44, 9.x < 9.0.0 Patch 37, 10.0.x < 10.0.5 Multiple Vulnerabilities

According to its self-reported version number, Zimbra Collaboration Server is affected by multiple vulnerabilities including: - A security related issue has been fixed to prevent javascript injection through help files. CVE-2007-1280 - A security related issue has been fixed which impacted one of...

Adobe RoboHelp Server Directory Traversal (CVE-2021-42727)

A directory traversal vulnerability exists in Adobe RoboHelp Server. This vulnerability is caused by input validation flaw when processing fileName parameter...

The vulnerability of software for monitoring and managing projects based on RoboHelp’s knowledge base lies in the lack of measures taken to protect the structure of web pages. This allows attackers to gain unauthorized access to protected information.

The vulnerability of software for monitoring and managing projects related to RoboHelp is linked to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected...

CVE-2022-23201

Adobe RoboHelp versions 2020.0.7 and earlier is affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser...

CVE-2022-23201

Adobe RoboHelp versions 2020.0.7 and earlier is affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser...

Cross site scripting

Adobe RoboHelp versions 2020.0.7 and earlier is affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser...

CVE-2022-23201

CVE-2022-23201 affects Adobe RoboHelp 2020.0.7 and earlier, with a reflected Cross-Site Scripting (XSS) vulnerability that can execute malicious JavaScript in the victim’s browser when a user visits a crafted URL referencing a vulnerable page. Root cause: insufficient input/output handling in Rob...

CVE-2022-23201 Adobe RoboHelp Reflected XSS could lead to Arbitrary code execution

Adobe RoboHelp versions 2020.0.7 and earlier is affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser...

Adobe RoboHelp Cross-Site Scripting Vulnerability (CNVD-2022-60077)

Adobe RoboHelp is a help authoring tool developed and released for Windows by the American company Audobee Adobe. A cross-site scripting vulnerability exists in Adobe RoboHelp version 2020.0.7 and earlier, which stems from the program's lack of checksum filtering of user-supplied data and output...

Adobe RoboHelp 2020 < RH2020.0.8 XSS (APSB22-10)

The version of Adobe RoboHelp installed on the remote host is 2020 prior to RH2020.0.8. It is, therefore, affected by a cross-site scripting XSS vulnerability. An unauthenticated, remote attacker can exploit this to execute arbitrary script code. Note that Nessus has not tested for this issue but...

Adobe RoboHelp XSS Vulnerability (APSB22-10)

Adobe RoboHelp is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Vulnerabilities fixed in Adobe products

Adobe has fixed vulnerabilities in Acrobat, Acrobat Reader, Photoshop and RoboHelp. The vulnerabilities allow a malicious able to execute arbitrary code within the context of the user, or gain access to sensitive data. Adobe has released updates to fix the vulnerabilities. For more information,...

Adobe RoboHelp 跨站脚本漏洞

Adobe RoboHelp is a help authoring tool developed and released for Windows by the American company Audobee Adobe. A cross-site scripting vulnerability exists in Adobe RoboHelp version 2020.0.7 and earlier, which stems from the program's lack of checksum filtering of user-supplied data and output...

Adobe Releases Security Updates for Multiple Products

Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Adobe Security Bulletins and apply the necessary...

APSB22-10 : Security update available for Adobe RoboHelp

Adobe has released a security update for RoboHelp. This update resolves a vulnerability rated important. Successful exploitation could lead to arbitrary code execution in the context of current user...

PT-2022-3679 · Adobe · Robohelp

Name of the Vulnerable Software and Affected Versions: Adobe RoboHelp versions 2020.0.7 and earlier Description: The issue is related to a reflected Cross-Site Scripting XSS vulnerability. If an attacker convinces a victim to visit a URL referencing a vulnerable page, malicious JavaScript content...

The vulnerability of server-based corporate software for monitoring and managing project knowledge bases in Adobe RoboHelp Server stems from deficiencies in the authentication process, allowing unauthorized users to escalate their privileges.

The vulnerability of server-based corporate software for project monitoring and management in Adobe RoboHelp Server is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow attackers to increase their privileges remotely...

CVE-2022-30670

RoboHelp Server earlier versions than RHS 11 Update 3 are affected by an Improper Authorization vulnerability which could lead to privilege escalation. An authenticated attacker could leverage this vulnerability to achieve full administrator privileges. Exploitation of this issue does not require...