9 matches found
EUVD-2018-16706
Malware in sbrugna...
EUVD-2014-9078
Malware in sbrugna...
Cross site scripting
In YzmCMS 5.6, stored XSS exists via the common/static/plugin/ueditor/1.4.3.3/php/controller.php action parameter, which allows remote attackers to upload a swf file. The swf file can be injected with arbitrary web script or HTML...
CVE-2020-23370
YzmCMS 5.6 is affected. A stored XSS exists in the common/static/plugin/ueditor/1.4.3.3/php/controller.php action parameter, enabling an attacker to upload a SWF file that can be injected with arbitrary web script or HTML. The root cause is a stored XSS in that parameter; impact is described as e...
Joomla! 3.5.x < 3.7.0 Multiple Vulnerabilities
According to its self-reported version number, the detected Joomla! application is affected by multiple vulnerabilities : - A flaw exists in the JMail API due to PHPMail version information being included in mail headers. An unauthenticated, remote attacker can exploit this to disclose sensitive...
Unrestricted file upload
Adobe Connect versions 9.7 and earlier have an exploitable unrestricted SWF file upload vulnerability. Successful exploitation could lead to information disclosure...
CVE-2018-4921
Adobe Connect versions 9.7 and earlier have an exploitable unrestricted SWF file upload vulnerability. Successful exploitation could lead to information disclosure...
CVE-2018-4921
Adobe Connect
Adobe Connect Multiple Vulnerabilities (APSB18-06)
Adobe Connect is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:connect"; ifdescription...