Linux Distros Unpatched Vulnerability : CVE-2019-19308

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In texttoglyphs in sushi-font-widget.c in gnome-font-viewer 3.34.0, there is a NULL pointer dereference while parsing a TTF font file that lacks a name section...

CVE-2022-45040

A cross-site scripting XSS vulnerability in /admin/pages/sectionssave.php of WBCE CMS v1.5.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name Section field...

CVE-2024-50983

FlightPath 7.5 contains a Cross Site Scripting XSS vulnerability, which allows authenticated remote attackers with administrative rights to inject arbitrary JavaScript in the web browser of a user by including a malicious payload into the Last Name section in the Create/Edit Faculty/Staff User or...

CVE-2024-50983

FlightPath 7.5 contains a Cross Site Scripting XSS vulnerability, which allows authenticated remote attackers with administrative rights to inject arbitrary JavaScript in the web browser of a user by including a malicious payload into the Last Name section in the Create/Edit Faculty/Staff User or...

CVE-2022-45040

A cross-site scripting XSS vulnerability in /admin/pages/sectionssave.php of WBCE CMS v1.5.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name Section field...

WBCE CMS 跨站脚本漏洞

WBCE CMS is an open source content management system CMS based on PHP and MySQL. A security vulnerability exists in WBCE CMS v1.5.4, which originates from a cross-site scripting XSS vulnerability in /admin/pages/sectionssave.php. The vulnerability can be exploited by an attacker to execute...

Denial Of Service (DoS)

gnome-font-viewer is vulnerable to denial of service. The vulnerability exists in texttoglyphs function of sushi-font-widget.c due to a NULL pointer dereference which allows an attacker to crash the application via a malicious TTF font file that does not have a name section...

UBUNTU-CVE-2019-19308

In texttoglyphs in sushi-font-widget.c in gnome-font-viewer 3.34.0, there is a NULL pointer dereference while parsing a TTF font file that lacks a name section due to a gstrconcat call that returns NULL...

CVE-2019-19308

In texttoglyphs in sushi-font-widget.c in gnome-font-viewer 3.34.0, there is a NULL pointer dereference while parsing a TTF font file that lacks a name section due to a gstrconcat call that returns NULL...

CVE-2019-19308

In texttoglyphs in sushi-font-widget.c in gnome-font-viewer 3.34.0, there is a NULL pointer dereference while parsing a TTF font file that lacks a name section due to a gstrconcat call that returns NULL...

PT-2019-15805 · Gnome · Gnome-Font-Viewer

Name of the Vulnerable Software and Affected Versions: gnome-font-viewer version 3.34.0 Description: The issue arises from a NULL pointer dereference in the text to glyphs function in sushi-font-widget.c while parsing a TTF font file that lacks a name section. This occurs due to a g strconcat cal...

CVE-2006-4091

Multiple cross-site scripting XSS vulnerabilities in Archangel Management Archangel Weblog 0.90.02 allow remote attackers to inject arbitrary web script or HTML via the 1 Name or 2 Comment section...