3 matches found
CVE-2023-37290
InfoDoc Document On-line Submission and Approval System lacks sufficient restrictions on the available tags within its HTML to PDF conversion function, and allowing an unauthenticated attackers to load remote or local resources through HTML tags such as iframe. This vulnerability allows...
CVE-2023-37290
InfoDoc Document On-line Submission and Approval System is affected by CVE-2023-37290 due to insufficient restrictions on HTML tags in its HTML-to-PDF conversion, enabling unauthenticated SSRF via resources loaded through tags like iframe. This could allow remote attackers to access arbitrary sys...
Threat Outbreak Alert: Fake Online Submission Notification Email Messages on July 22, 2013
Medium Alert ID: 30165 First Published: 2013 July 22 16:23 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an online submission receipt notification for the recipient. The text in the email message attempts to persuade t...