EUVD-2021-23144

Malware in sbrugna...

CVE-2021-36542

Cross-Site Request Forgery CSRF vulnerability in the /op/op.LockDocument.php in SeedDMS v5.1.x5.1.23 and v6.0.x 6.0.16 allows a remote attacker to lock any document without victim's knowledge, by enticing an authenticated user to visit an attacker's web page...

CVE-2022-30351

PDFZorro PDFZorro Online r20220428 using TCPDF 6.2.5, despite having workflows claiming to correctly remove redacted information from a supplied PDF file, does not properly sanitize this information in all cases, causing redacted information, including images and text embedded in the PDF file, to...

CVE-2021-36542

Cross-Site Request Forgery CSRF vulnerability in the /op/op.LockDocument.php in SeedDMS v5.1.x5.1.23 and v6.0.x 6.0.16 allows a remote attacker to lock any document without victim's knowledge, by enticing an authenticated user to visit an attacker's web page...

CVE-2021-36542

Cross-Site Request Forgery CSRF vulnerability in the /op/op.LockDocument.php in SeedDMS v5.1.x5.1.23 and v6.0.x 6.0.16 allows a remote attacker to lock any document without victim's knowledge, by enticing an authenticated user to visit an attacker's web page...

CVE-2021-36542

CVE-2021-36542 is a CSRF vulnerability in SeedDMS affecting op/LockDocument.php for SeedDMS 5.1.x below 5.1.23 and 6.0.x below 6.0.16. An authenticated user who visits a malicious page can cause the application to lock any document without the user’s knowledge. The NVD entry documents a CVSSv3.1 ...