28 matches found
PT-2022-20572 · Unknown · Lti 1.3 Tool Library
Name of the Vulnerable Software and Affected Versions: LTI 1.3 Tool Library versions prior to 5.0 Description: The issue concerns the function used to generate random nonces, which was not sufficiently cryptographically complex. This could make values predictable and tokens forgable. There are no...
LTI 1.3 Tool Library 加密问题漏洞
The LTI 1.3 Tool Library is a library of LTI 1.3 tool providers for building IMS certifications in PHP. A security vulnerability exists in the LTI 1.3 Tool Library prior to version 5.0, which stems from LTI 1.3 Tool Library is a library for building LTI 1.3 tool providers for IMS authentication i...
LTI 1.3 Tool Library 安全特征问题漏洞
The LTI 1.3 Tool Library is a library of LTI 1.3 tool providers for building IMS certifications in PHP. A security feature issue vulnerability exists in versions of the LTI 1.3 Tool Library prior to 5.0, which stems from the LTI 1.3 Tool Library is a library used to build LTI 1.3 tool providers f...
exiftool 操作系统命令注入漏洞
exiftool is a software application. Make metadata more accessible. An operating system command injection vulnerability exists in exiftool before 12.38, which stems from the lib/Image/ExifTool.pm error handling $file = /|$/ check...
Apache PDFBox Resource Management Error Vulnerability
Apache PDFBox is the United States Apache Apache Foundation of a Java-based open source language tool library . The product provides PDF document creation and editing and other functions. Apache PDFBox there is a security vulnerability , an attacker can exploit the vulnerability by crafting a PDF...
The vulnerability of the Spectgen tool in the Edinburgh Speech Tool Library allows a perpetrator to trigger a service failure.
The vulnerability of the Spectgen tool in the Edinburgh Speech Tool Library is related to division by zero errors. Exploiting this vulnerability could allow an attacker to cause a service failure in the application by entering specially crafted data...
Design/Logic Flaw
The Portable Tool Library aka PTLib before 2.10.10, as used in Ekiga before 4.0.1, does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service memory and CPU consumption via a crafted PXML document containing a large number of nested enti...
CVE-2013-1864
The CVE-2013-1864 issue affects PTLib (Portable Tool Library) before 2.10.10 as used in Ekiga before 4.0.1. The vulnerability arises from improper detection of recursion during entity expansion, enabling a remote attacker to cause a denial of service via crafted PXML documents with a very large n...