Lucene search
K

29 matches found

CVE
CVE
added 2023/06/14 12:0 a.m.59 views

CVE-2023-34624

CVE-2023-34624 affects libhtmlcleaner-java and is documented across multiple advisories (Debian, Ubuntu, NCSC) as a denial of service vulnerability in the HtmlCleaner library triggered by deeply nested HTML/input; the root cause involves handling crafted input with nesting/cyclic dependencies. Ef...

7.5CVSS7.2AI score0.01048EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/06/14 12:0 a.m.29 views

CVE-2023-34624

An issue was discovered htmlcleaner thru = 2.28 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies...

7.6AI score0.01048EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2023/06/14 12:0 a.m.11 views

CVE-2023-34624

An issue was discovered htmlcleaner thru = 2.28 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies...

7.5CVSS7.5AI score0.01048EPSS
Exploits1
Veracode
Veracode
added 2018/10/30 6:51 a.m.23 views

Information Disclosure

htmlcleaner is vulnerable to information disclosure. Multiple race conditions in src/main/java/org/htmlcleaner/HtmlCleaner.java, when performing rapid mail-sending or draft-saving operations, allow a remote authenticated attacker to read private e-mails of other users by leveraging on the lack of...

4.9CVSS5.6AI score0.00691EPSS
Exploits1References4Affected Software1
securityvulns
securityvulns
added 2013/10/01 12:0 a.m.53 views

Open-Xchange Security Advisory 2013-08-16

Product: Open-Xchange AppSuite / HTMLCleaner Vendor: Open-Xchange GmbH / HTMLCleaner team Internal reference: 27708 Open-Xchange Bug ID, 86 HTMLcleaner ticket Vulnerability type: Race condition within a thread CWE-366 Vulnerable version: 7.2.2 Vulnerable component: backend Fixed version:...

4.9CVSS0.00691EPSS
Exploits1
NVD
NVD
added 2013/09/05 11:44 a.m.18 views

CVE-2013-5035

Multiple race conditions in HtmlCleaner before 2.6, as used in Open-Xchange AppSuite 7.2.2 before rev13 and other products, allow remote authenticated users to read the private e-mail of other persons in opportunistic circumstances by leveraging lack of thread safety and performing a rapid series...

4.9CVSS6.3AI score0.00691EPSS
Exploits1References2
Prion
Prion
added 2013/09/05 11:44 a.m.17 views

Race condition

Multiple race conditions in HtmlCleaner before 2.6, as used in Open-Xchange AppSuite 7.2.2 before rev13 and other products, allow remote authenticated users to read the private e-mail of other persons in opportunistic circumstances by leveraging lack of thread safety and performing a rapid series...

4.9CVSS6.9AI score0.00691EPSS
Exploits1References2Affected Software2
Cvelist
Cvelist
added 2013/09/05 10:0 a.m.25 views

CVE-2013-5035

Multiple race conditions in HtmlCleaner before 2.6, as used in Open-Xchange AppSuite 7.2.2 before rev13 and other products, allow remote authenticated users to read the private e-mail of other persons in opportunistic circumstances by leveraging lack of thread safety and performing a rapid series...

6.3AI score0.00691EPSS
Exploits1References2
CVE
CVE
added 2013/09/05 10:0 a.m.50 views

CVE-2013-5035

Vulnerability: Race conditions in HtmlCleaner (library used by Open-Xchange AppSuite) allow remote authenticated users to read other users’ private emails when rapid mail-send or draft-save operations occur. Affected versions: HtmlCleaner prior to 2.6; Open-Xchange AppSuite 7.2.2 before rev13 (an...

4.9CVSS6.5AI score0.00691EPSS
Exploits1References2Affected Software2
Rows per page
Query Builder