29 matches found
CVE-2023-34624
CVE-2023-34624 affects libhtmlcleaner-java and is documented across multiple advisories (Debian, Ubuntu, NCSC) as a denial of service vulnerability in the HtmlCleaner library triggered by deeply nested HTML/input; the root cause involves handling crafted input with nesting/cyclic dependencies. Ef...
CVE-2023-34624
An issue was discovered htmlcleaner thru = 2.28 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies...
CVE-2023-34624
An issue was discovered htmlcleaner thru = 2.28 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies...
Information Disclosure
htmlcleaner is vulnerable to information disclosure. Multiple race conditions in src/main/java/org/htmlcleaner/HtmlCleaner.java, when performing rapid mail-sending or draft-saving operations, allow a remote authenticated attacker to read private e-mails of other users by leveraging on the lack of...
Open-Xchange Security Advisory 2013-08-16
Product: Open-Xchange AppSuite / HTMLCleaner Vendor: Open-Xchange GmbH / HTMLCleaner team Internal reference: 27708 Open-Xchange Bug ID, 86 HTMLcleaner ticket Vulnerability type: Race condition within a thread CWE-366 Vulnerable version: 7.2.2 Vulnerable component: backend Fixed version:...
CVE-2013-5035
Multiple race conditions in HtmlCleaner before 2.6, as used in Open-Xchange AppSuite 7.2.2 before rev13 and other products, allow remote authenticated users to read the private e-mail of other persons in opportunistic circumstances by leveraging lack of thread safety and performing a rapid series...
Race condition
Multiple race conditions in HtmlCleaner before 2.6, as used in Open-Xchange AppSuite 7.2.2 before rev13 and other products, allow remote authenticated users to read the private e-mail of other persons in opportunistic circumstances by leveraging lack of thread safety and performing a rapid series...
CVE-2013-5035
Multiple race conditions in HtmlCleaner before 2.6, as used in Open-Xchange AppSuite 7.2.2 before rev13 and other products, allow remote authenticated users to read the private e-mail of other persons in opportunistic circumstances by leveraging lack of thread safety and performing a rapid series...
CVE-2013-5035
Vulnerability: Race conditions in HtmlCleaner (library used by Open-Xchange AppSuite) allow remote authenticated users to read other users’ private emails when rapid mail-send or draft-save operations occur. Affected versions: HtmlCleaner prior to 2.6; Open-Xchange AppSuite 7.2.2 before rev13 (an...