[SECURITY] Fedora 29 Update: evince-3.30.2-4.fc29

Evince is simple multi-page document viewer. It can display and print Portable Document Format PDF, PostScript PS and Encapsulated PostScript EPS files. When supported by the document format, evince allows searching for text, copying text to the clipboard, hypertext navigation, table-of-contents...

[SECURITY] Fedora 25 Update: evince-3.22.1-5.fc25

Evince is simple multi-page document viewer. It can display and print Portable Document Format PDF, PostScript PS and Encapsulated PostScript EPS files. When supported by the document format, evince allows searching for text, copying text to the clipboard, hypertext navigation, table-of-contents...

[SECURITY] Fedora 26 Update: evince-3.24.0-3.fc26

Evince is simple multi-page document viewer. It can display and print Portable Document Format PDF, PostScript PS and Encapsulated PostScript EPS files. When supported by the document format, evince allows searching for text, copying text to the clipboard, hypertext navigation, table-of-contents...

CVE-2012-5584

The Table of Contents module 6.x-3.x before 6.x-3.8 for Drupal does not properly check node permissions, which allows remote attackers to read a node's headers by accessing a table of contents block...

Code injection

The Table of Contents module 6.x-3.x before 6.x-3.8 for Drupal does not properly check node permissions, which allows remote attackers to read a node's headers by accessing a table of contents block...

CVE-2012-5584

The CVE-2012-5584 entry relates to the Drupal Table of Contents module (6.x-3.x) prior to 6.x-3.8. The vulnerability is due to improper permission checks when displaying the table of contents block, allowing remote attackers to read a node’s headers. Affected component: tableofcontents 6.x-3.x be...

CVE-2012-5584

The Table of Contents module 6.x-3.x before 6.x-3.8 for Drupal does not properly check node permissions, which allows remote attackers to read a node's headers by accessing a table of contents block...

SA-CONTRIB-2012-166 - Table of Contents - Access Bypass

This module enables you to generates a list of select header tags in a box that looks like a table of contents or summary. The links added to that box point to the headers so users can quickly access each section of your documents. The module doesn't sufficiently check for node access restriction...

Atlassian Confluence 2.x >= 2.7 / 3.x < 3.4.9 Multiple XSS

According to its self-reported version number, the instance of Atlassian Confluence on the remote host is a 2.x version that is 2.7 or later, or else version 3.x prior to 3.4.9. It is, therefore, affected by multiple cross-site scripting vulnerabilities. Errors in the validation of input data to...

Atlassian's Confluence Cross Site Scripting

A while back I reported some bugs in Atlassian's Confluence. As everyone should have upgraded by now I feel that I can now release my proof of concept for CONF-21508 and CONF-21819. note - I uncovered and reported these bugs at different times. Issue 1 CONF-21508: the document macro did not...

"The Daily" Hacked, Unauthorized Web Index Created !

One affair about The Daily that ashamed me from the additional I aboriginal laid eyes on the iPad bi-weekly that launched bygone is that there is no one abode area you can see a simple account of every news in the issue. There is a table of contents, but it shows alone ten featured stories. Like...

[SECURITY] Fedora 13 Update: evince-2.30.3-2.fc13

Evince is simple multi-page document viewer. It can display and print Portable Document Format PDF, PostScript PS and Encapsulated PostScript EPS files. When supported by the document format, evince allows searching for text, copying text to the clipboard, hypertext navigation, table-of-contents...

Integer overflow

Multiple integer overflows in innsv.dll in the innsv plugin in Winamp before 5.6 allow remote attackers to execute arbitrary code via a crafted Table of Contents TOC in a 1 NSV stream or 2 NSV file that triggers a heap-based buffer overflow...

Secunia Research: Winamp NSV Table of Contents Parsing Integer Overflow

====================================================================== Secunia Research 30/11/2010 - Winamp NSV Table of Contents Parsing Integer Overflow - ====================================================================== Table of Contents Affected...

Microsoft Help Files (.CHM): 'Locked File' Feature Bypass

No description provided by source. Changes made with Windows XP introduced additional origin validation for files downloaded from the Internet when saved to an NTFS volume. This 'feature' is present in Windows XP, Vista and 7. When a user downloads a .CHM file using Internet Explorer or another...

Microsoft Help Files &#40;.CHM&#41;: &#39;Locked File&#39; Feature Bypass

, , . .' '. ', . , '. , ., , / / / ==/ / / / / / / | Y Y / /| / /||| / / /.-. / /:wq x.0 '=.|w|.=' ='"=. Microsoft Help Files .CHM: 'Locked File' Bypass Versions Affected: Windows XP, Windows Vista, Windows 7 pdf: http://www.security-assessment.com/files/advisories/WindowsLockedHelpFiles.pdf...

[SECURITY] Fedora 12 Update: html2ps-1.0-0.4.b5.fc12

An HTML to PostScript converter written in Perl. Many possibilities to control the appearance. Support for processing multiple documents. A table of contents can be generated. Configurable page headers/footers. Automatic hyphenation and text justification can be selected...

[SECURITY] Fedora 12 Update: xar-1.5.2-6.fc12

The XAR project aims to provide an easily extensible archive format. Import ant design decisions include an easily extensible XML table of contents for ran dom access to archived files, storing the toc at the beginning of the archive to allow for efficient handling of streamed archives, the abili...

Code injection

Autodesk Softimage 7.x and Softimage XSI 6.x allow remote attackers to execute arbitrary JavaScript code via a scene package containing a Scene Table of Contents aka .scntoc file with a ScriptContent element, as demonstrated by code that loads the WScript.Shell ActiveX control...