2 matches found
ESTsoft ALZip 8.12.0.3 - .zip Remote Buffer Overflow
ESTsoft ALZip 8.12.0.3 - .zip Remote Buffer Overflow source: https://www.securityfocus.com/bid/45917/info ESTsoft ALZip is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Attackers may leverage this issue to execute arbitrary co...
CVE-2010-2671
CVE-2010-2671 is an XSS vulnerability in eZ Publish versions 3.7.0–4.2.0, triggered via the subTreeItem parameter in advancedsearch.php. The issue allows remote injection of arbitrary web script/HTML. The description identifies the vulnerable component and input, but the provided documents do not...