Code injection

Opencast before 8.1 and 7.6 allows almost arbitrary identifiers for media packages and elements to be used. This can be problematic for operation and security since such identifiers are sometimes used for file system operations which may lead to an attacker being able to escape working directorie...

[RHSA-2002:062-08] Insecure DocBook stylesheet option

--------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: Insecure DocBook stylesheet option Advisory ID: RHSA-2002:062-08 Issue date: 2002-04-11 Updated on: 2002-04-26 Product: Red Hat Linux Keywords: docbook stylesheet Cross...