2 matches found
WordPress 插件 跨站脚本漏洞
WordPress is a blogging platform developed by the Wordpress Foundation using the PHP language. A cross-site scripting vulnerability exists in the WordPress Appointment Hour Booking plugin prior to 1.3.17, which stems from a lack of validation of user input data and filtering of input data for the...
libical: Heap buffer overflow in icalmemory_strdup_and_dequote function in icalvalue.c
A flaw in Thunderbird's implementation of iCal causes a heap buffer overflow in icalmemorystrdupanddequote when processing certain email messages, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird 60.7.1...