The vulnerability of the Yelp review system lies in the fact that functions from an unreliable and uncontrolled area are integrated during the processing of documents using the ghelp scheme. This allows a malicious actor to gain unauthorized access to protected information and execute arbitrary code.

The vulnerability of the Yelp review system lies in the inclusion of functions from an unreliable and uncontrolled area during the processing of documents using the ghelp scheme. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information and...

IBM Content Navigator Cross-Site Scripting Vulnerability (CNVD-2023-98176)

IBM Content Navigator is a Web client from International Business Machines IBM. The product supports searching and processing documents stored in content servers from a Web browser. IBM Content Navigator suffers from a cross-site scripting vulnerability that stems from the application's lack of...

USN-2899-1 libreoffice vulnerabilities

It was discovered that LibreOffice incorrectly handled LWP document files. If a user were tricked into opening a specially crafted LWP document, a remote attacker could cause LibreOffice to crash, and possibly execute arbitrary code...