5 matches found
Adobe Substance3D Stager 输入验证错误漏洞
Adobe Substance3D Stager is a set and rendering software for 3D scenes from Audobee Adobe USA. An input validation error vulnerability exists in Adobe Substance3D Stager 3.1.4 and prior versions, which stems from an integer overflow or wrap-around error that could lead to the execution of arbitra...
PT-2024-35343 · Imbachat · Imbachat
Name of the Vulnerable Software and Affected Versions: ImbaChat versions prior to 3.1.4 Description: The issue is related to improper neutralization of input during web page generation, which allows for DOM-Based XSS. This means that an attacker could potentially inject malicious scripts into the...
PT-2024-24900
Name of the Vulnerable Software and Affected Versions Simply Static versions 3.1.3 and earlier Description The issue is related to the insertion of sensitive information into log files. This could potentially expose sensitive data. Recommendations For Simply Static versions 3.1.3 and earlier, at...
Welotec SMART EMS 安全漏洞
Welotec SMART EMS is a solution for centralized management of distributed devices from Welotec. A security vulnerability exists in Welotec SMART EMS versions prior to 3.1.4 that stems from the presence of a clickjacking vulnerability that could trick a user into performing an unexpected action...
PT-2024-10415
Name of the Vulnerable Software and Affected Versions Jinja versions prior to 3.1.4 Description The issue is related to the xmlattr filter in Jinja, which accepts keys containing non-attribute characters. XML/HTML attributes cannot contain spaces, /, , or =, as each would then be interpreted as...