45 matches found
Astra Linux - уязвимость в poppler
A issue was discovered in Poppler 0.71.0. There is a NULL pointer dereference in goo/GooString.h, which can lead to a denial of service. This issue is evident in utils/pdfdetach.cc, where it does not validate the filename of an embedded file before constructing a save path...
EUVD-2022-45009
Malicious code in bioql PyPI...
EUVD-2021-8142
Malicious code in bioql PyPI...
Malicious code in @zalastax/nolb-goo (npm)
The package @zalastax/nolb-goo was found to contain malicious code...
Malicious code in @zalastax/nolb-goo_ (npm)
The package @zalastax/nolb-goo was found to contain malicious code...
MAL-2025-11629 Malicious code in @zalastax/nolb-goo- (npm)
The package @zalastax/nolb-goo- was found to contain malicious code...
MAL-2025-11630 Malicious code in @zalastax/nolb-goo_ (npm)
The package @zalastax/nolb-goo was found to contain malicious code...
Malicious code in @zalastax/nolb-goo- (npm)
The package @zalastax/nolb-goo- was found to contain malicious code...
MAL-2025-11628 Malicious code in @zalastax/nolb-goo (npm)
The package @zalastax/nolb-goo was found to contain malicious code...
CVE-2022-25420
NTT Resonant Incorporated goo blog App Web Application 1.0 is vulnerable to CLRF injection. This vulnerability allows attackers to execute arbitrary code via a crafted HTTP request...
CVE-2021-20728
Improper access control vulnerability in goo blog App for Android ver.1.2.25 and earlier and for iOS ver.1.3.3 and earlier allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App...
goo-net.com Cross Site Scripting vulnerability OBB-3798647
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
SUSE CVE-2022-45587
Stack overflow vulnerability in function gmalloc in goo/gmem.cc in xpdf 4.04, allows local attackers to cause a denial of service...
CVE-2022-45587
Stack overflow vulnerability in function gmalloc in goo/gmem.cc in xpdf 4.04, allows local attackers to cause a denial of service...
UBUNTU-CVE-2022-45587
Stack overflow vulnerability in function gmalloc in goo/gmem.cc in xpdf 4.04, allows local attackers to cause a denial of service...
SUSE CVE-2013-4472
The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 and earlier, when running on a system other than Unix, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names...
SUSE CVE-2014-1482
RasterImage.cpp in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 does not prevent access to discarded data, which allows remote attackers to execute arbitrary code or cause a denial of service incorrect write operations via crafted...
SUSE CVE-2022-41842
An issue was discovered in Xpdf 4.04. There is a crash in gfseekIOFILE, long, int in goo/gfile.cc...
CVE-2022-41842
An issue was discovered in Xpdf 4.04. There is a crash in gfseekIOFILE, long, int in goo/gfile.cc...
UBUNTU-CVE-2022-41842
An issue was discovered in Xpdf 4.04. There is a crash in gfseekIOFILE, long, int in goo/gfile.cc...