Lucene search
+L

6 matches found

CVE
CVE
added 2026/03/18 3:3 a.m.31 views

CVE-2026-31898

Summary (CVE-2026-31898) jsPDF prior to 4.2.1 is affected by a PDF Object Injection flaw in the color parameter of createAnnotation. When unsanitized user input is passed to this API, an attacker could inject arbitrary PDF objects, including JavaScript actions, which may execute when the PDF is o...

8.1CVSS5.8AI score0.00356EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2023/05/30 3:15 p.m.4 views

CVE-2023-2981

A vulnerability, which was classified as problematic, has been found in Abstrium Pydio Cells 4.2.0. This issue affects some unknown processing of the component Chat. The manipulation leads to basic cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the...

5.4CVSS3.9AI score0.0067EPSS
Exploits1References4
NVD
NVD
added 2023/05/30 2:15 p.m.28 views

CVE-2023-2979

A vulnerability classified as critical has been found in Abstrium Pydio Cells 4.2.0. This affects an unknown part of the component User Creation Handler. The manipulation leads to improper access controls. It is possible to initiate the attack remotely. The exploit has been disclosed to the publi...

8.8CVSS6AI score0.00807EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/05/30 12:0 a.m.4 views

PT-2023-22428 · Abstrium · Abstrium Pydio Cells

Name of the Vulnerable Software and Affected Versions: Abstrium Pydio Cells version 4.2.0 Description: A problematic vulnerability has been found in Abstrium Pydio Cells, affecting the component Chat. This issue leads to basic cross-site scripting and can be initiated remotely. The manipulation...

5.4CVSS6.6AI score0.0067EPSS
Exploits1References12
Snyk
Snyk
added 2023/03/26 12:54 p.m.1 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow due to the generic pointer 'p' pointing to an inaccessible address in the getle64 function. Remediation Upgrade upx to version 4.2.1 or higher. References - GitHub Commit - GitHub Issue Credit: 14isnot40...

7.5CVSS7AI score0.00817EPSS
Exploits1References2
Snyk
Snyk
added 2021/05/27 12:15 a.m.1 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference. Null pointer dereference was found in upx PackLinuxElf::canUnpack in plxelf.cpp,in version UPX 4.0.0. That allow attackers to execute arbitrary code and cause a denial of service via a crafted file. Remediation...

7.8CVSS7.7AI score0.0123EPSS
Exploits1References2
Rows per page
Query Builder