PT-2025-32788

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions affected versions not specified Description A critical issue exists in the Microsoft Windows Graphics Component, specifically within the windowscodecs.dll library. This flaw is an untrusted pointer dereference that...

CVE-2023-47795

Stored cross-site scripting XSS vulnerability in the Document and Media widget in Liferay Portal 7.4.3.18 through 7.4.3.101, and Liferay DXP 2023.Q3 before patch 6, and 7.4 update 18 through 92 allows remote authenticated users to inject arbitrary web script or HTML via a crafted payload injected...

PT-2024-20776 · Liferay · Liferay Dxp +1

Name of the Vulnerable Software and Affected Versions: Liferay Portal versions 7.2.0 through 7.3.6 Liferay DXP 7.3 before service pack 3 Liferay DXP 7.2 before fix pack 13 Description: The Document and Media widget in Liferay Portal does not limit resource consumption when generating a preview...

SUSE CVE-2006-5864

Stack-based buffer overflow in the psgettext function in ps.c for GNU gv 3.6.2, and possibly earlier versions, allows user-assisted attackers to execute arbitrary code via a PostScript PS file with certain headers that contain long comments, as demonstrated using the 1 DocumentMedia, 2...