19 matches found
EUVD-2026-24235
Horilla is a free and open source Human Resource Management System HRMS. In 1.5.0, a broken access control vulnerability in the helpdesk attachment viewer allows any authenticated user to view attachments from other tickets by changing the attachment ID. This can expose sensitive support files an...
CVE-2026-40867 Horilla: Unauthorized Helpdesk Attachment Access via Attachment ID Manipulation
Horilla is a free and open source Human Resource Management System HRMS. In 1.5.0, a broken access control vulnerability in the helpdesk attachment viewer allows any authenticated user to view attachments from other tickets by changing the attachment ID. This can expose sensitive support files an...
Horilla 安全漏洞
Horilla is a free open-source human resources software developed by Horilla Company. Version 1.5.0 of Horilla contains a security vulnerability. This vulnerability stems from an access control flaw in the help desk attachment viewer, which may allow any authenticated user to view attachments from...
CVE-2024-25080
WebMail in Axigen 10.x before 10.3.3.62 allows XSS via the image attachment viewer...
CVE-2024-25080
WebMail in Axigen 10.x before 10.3.3.62 allows XSS via the image attachment viewer...
CVE-2024-25080
WebMail in Axigen 10.x before 10.3.3.62 allows XSS via the image attachment viewer...
CVE-2024-25080
WebMail in Axigen 10.x before 10.3.3.62 allows XSS via the image attachment viewer...
CVE-2024-25080
The CVE-2024-25080 entry affects Axigen’s WebMail component. Vulnerable: Axigen 10.x WebMail before 10.3.3.62. Root cause: a cross-site scripting (XSS) flaw exposed via the image attachment viewer, enabling injected script execution within a user’s browser session. Impact details in the connected...
IBM Lotus Notes Attachment Viewer UUE File Handling Buffer Overflow - ver 2 (CVE-2005-2618)
Lotus Notes is a client-server collaborative software and email system provided by IBM. The Lotus Notes email client application is capable of communicating with email servers over the SMTP, POP and IMAP protocols. There exists a buffer overflow vulnerability in IBM Lotus Notes Attachment Viewer...
IBM Lotus Notes Attachment Handling Multiple Buffer Overflows
The file attachment viewer component included with the instance of Lotus Notes installed on the remote Windows host is reportedly affected by several buffer overflow vulnerabilities that can be triggered when handling attachments of various types. By sending a specially crafted attachment to user...
IBM Lotus Notes DOC Attachment Viewer Buffer Overflow (CVE-2007-5544)
Lotus Notes is a client-server collaborative software and email system provided by IBM. The Lotus Notes email client application is capable of communicating with email servers over a range of protocols, such as: SMTP, POP, and IMAP. A stack buffer overflow vulnerability exists in the way IBM Lotu...
IBM Lotus Notes Attachment Viewer UUE File Handling Buffer Overflow (CVE-2005-2618)
Lotus Notes is a client-server collaborative software and email system provided by IBM. The Lotus Notes email client application is capable of communicating with email servers over the SMTP, POP and IMAP protocols. There exists a buffer overflow vulnerability in IBM Lotus Notes Attachment Viewer...
Lotus Notes WPD attachment viewer buffer overflow
Added: 01/03/2008 CVE: CVE-2007-5910 BID: 26175 OSVDB: 40783 Background Lotus Notes is the client for Lotus Domino servers. Problem A buffer overflow in the KeyView Viewer included in Lotus Notes allows command execution when a user views a specially crafted WordPerfect WPD attachment. Resolution...
Lotus Notes WPD attachment viewer buffer overflow
Added: 01/03/2008 CVE: CVE-2007-5910 BID: 26175 OSVDB: 40783 Background Lotus Notes is the client for Lotus Domino servers. Problem A buffer overflow in the KeyView Viewer included in Lotus Notes allows command execution when a user views a specially crafted WordPerfect WPD attachment. Resolution...
Lotus Notes Client < 7.0.3 / 8.0.1 Multiple Overflows
The version of Lotus Notes installed on the remote Windows host is reportedly affected by several buffer overflows in its file attachment viewer when handling attachments of various types. By sending a specially crafted attachment to users of the affected application and getting them to...
[vuln.sg] IBM Lotus Notes Attachment Viewer Buffer Overflow Vulnerabilities
vuln.sg Vulnerability Research Advisory IBM Lotus Notes Attachment Viewer Buffer Overflow Vulnerabilities by Tan Chew Keong Release Date: 2007-10-23 Summary ------- Multiple exploitable buffer overflow vulnerabilities were found within the file attachment viewer in IBM Lotus Notes. The...
Lotus Notes Attachment Viewer UUE file buffer overflow
Added: 02/21/2006 CVE: CVE-2005-2618 BID: 16576 OSVDB: 23065 Background Lotus Notes is the client for Lotus Domino servers. Problem A buffer overflow in the attachment viewer in the Lotus Notes e-mail client allows command execution when a user opens a specially crafted UUE file. Resolution Upgra...
Lotus Notes Attachment Viewer UUE file buffer overflow
Added: 02/21/2006 CVE: CVE-2005-2618 BID: 16576 OSVDB: 23065 Background Lotus Notes is the client for Lotus Domino servers. Problem A buffer overflow in the attachment viewer in the Lotus Notes e-mail client allows command execution when a user opens a specially crafted UUE file. Resolution Upgra...
Lotus Notes Attachment Viewer UUE file buffer overflow
Added: 02/21/2006 CVE: CVE-2005-2618 BID: 16576 OSVDB: 23065 Background Lotus Notes is the client for Lotus Domino servers. Problem A buffer overflow in the attachment viewer in the Lotus Notes e-mail client allows command execution when a user opens a specially crafted UUE file. Resolution Upgra...