4 matches found
CVE-2023-23707
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting', Unrestricted Upload of File with Dangerous Type vulnerability in Awsm Innovations Embed Any Document – Embed PDF, Word, PowerPoint and Excel Files allows Stored XSS via upload of SVG and HTML files. This issue...
PT-2023-19520 · Irfanview · Irfanview
Name of the Vulnerable Software and Affected Versions: IrfanView version 4.60 Description: The issue is related to improper input validation in the PDF.dll plugin, which allows attackers to execute arbitrary code when a crafted PDF file is opened. Recommendations: For IrfanView version 4.60,...
Cross site scripting
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting', Unrestricted Upload of File with Dangerous Type vulnerability in Awsm Innovations Embed Any Document – Embed PDF, Word, PowerPoint and Excel Files allows Stored XSS via upload of SVG and HTML files. This issue...
IrfanView buffer overflow vulnerability (CNVD-2017-30370)
IrfanView is a Bosnia and Herzegovina software developer Irfan Skiljan developed a picture viewer, which supports image browsing, image editing, image format conversion, etc. PDF plugin is one of the PDF document reading plug-ins. IrfanView 4.44 32-bit in the PDF plugin version 4.43 there is a...