CVE-2013-5035

Multiple race conditions in HtmlCleaner before 2.6, as used in Open-Xchange AppSuite 7.2.2 before rev13 and other products, allow remote authenticated users to read the private e-mail of other persons in opportunistic circumstances by leveraging lack of thread safety and performing a rapid series...

at.newmedialab.ldpath:ldpath-core (>=0.9.5 <=0.9.7), at.newmedialab.ldpath:ldpath-core-bundle (>=0.9.5 <=0.9.7) +285 more potentially affected by CVE-2023-34624 via net.sourceforge.htmlcleaner:htmlcleaner (>=2.10 <=2.28)

net.sourceforge.htmlcleaner:htmlcleaner MAVEN version =2.10, =0.9.5, =0.9.5, =0.0.2, =1.1.6, =0.1, =0.0.2, =0.0.2, =0.0.4, =0.1.4, =0.1.4, =0.1.5, =0.0.14, =0.0.20 - com.github.agmenc:pettswood2.11 =0.0.20 and more Source cves: CVE-2023-34624 Source advisory: OSV:GHSA-JV4X-J47Q-6QVP...

CVE-2023-34624

An issue was discovered htmlcleaner thru = 2.28 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies...

Code injection

An issue was discovered htmlcleaner thru = 2.28 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies...