The vulnerability in the LDAP Account Manager web application exists due to the failure to take measures to neutralize special elements, allowing attackers to execute arbitrary code.

The vulnerability of the LDAP Account Manager web application exists due to the failure to take measures to neutralize special elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code, provided that the /config/templates/pdf/ directory is accessible to users...

CVE-2019-18958

Nitro Pro before 13.2 creates a debug.log file in the directory where a .pdf file is located, if the .pdf document was produced by an OCR operation on the JPEG output of a scanner. Reportedly, this can have a security risk if debug.log is later edited and then executed...

CVE-2019-18958

Nitro Pro before 13.2 creates a debug.log file in the directory where a .pdf file is located, if the .pdf document was produced by an OCR operation on the JPEG output of a scanner. Reportedly, this can have a security risk if debug.log is later edited and then executed...

DEBIAN-CVE-2013-6476

The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file...