4 matches found
GHSA-H4M4-XP33-37MJ Liferay Portal vulnerable to Reflected XSS with the referer and forward parameter
A reflected cross-site scripting XSS vulnerability in the Liferay Portal 7.4.0 through 7.4.3.131, and Liferay DXP 2024.Q4.0 through 2024.Q4.3, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.12 and 7.4 GA through update 92 allows an remote non-authenticated...
PT-2024-3249 · Progress · Progress Telerik Reporting
Name of the Vulnerable Software and Affected Versions: Progress Telerik Reporting versions prior to 2024 Q1 18.0.24.130 Description: The issue is related to an insecure deserialization vulnerability in the ObjectReader class of Progress Telerik Reporting, which can be exploited by a remote threat...
PT-2024-3248 · Progress · Progress Telerik Reporting
Name of the Vulnerable Software and Affected Versions: Progress Telerik Reporting versions prior to 2024 Q1 18.0.24.130 Description: The issue is related to an insecure deserialization vulnerability in the ObjectReader class of Progress Telerik Reporting, which can be exploited by a local threat...
CVE-2024-23609
An improper error handling vulnerability in LabVIEW may result in remote code execution. Successful exploitation requires an attacker to provide a user with a specially crafted VI. This vulnerability affects LabVIEW 2024 Q1 and prior versions...