EUVD-2023-57466

Malicious code in bioql PyPI...

OpenJPEG Resource Management Error Vulnerability

OpenJPEG is an open source C-based JPEG2000 codec. A resource management error vulnerability exists in OpenJPEG, which stems from a resource exhaustion condition in the opjt1decodecblks function in tcd.c. The vulnerability is caused by a resource exhaustion condition...

CVE-2023-5128

The TCD Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'map' shortcode in versions up to, and including, 1.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with...

Cross site scripting

The TCD Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'map' shortcode in versions up to, and including, 1.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with...

CVE-2023-5128

CVE-2023-5128 affects the TCD Google Maps WordPress plugin (versions up to and including 1.8). It is a Stored XSS via the map shortcode caused by insufficient input sanitization and output escaping of user-supplied attributes, allowing authenticated attackers with contributor-level and above perm...

CVE-2023-5128 TCD Google Maps <= 1.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

The TCD Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'map' shortcode in versions up to, and including, 1.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with...

WordPress Plugin TCD Google Maps Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

PT-2023-31782 · WordPress · Tcd Google Maps Plugin

Name of the Vulnerable Software and Affected Versions: TCD Google Maps plugin for WordPress versions up to, and including, 1.8 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the 'map' shortcode, allowing authenticated attacker...

WordPress TCD Google Maps Plugin <= 1.8 is vulnerable to Cross Site Scripting (XSS)

Software TCD Google Maps Type Plugin Vulnerable versions = 1.8 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5128 Patch priority Low CVSS severity Low 6.4 Developer Claim ownership PSID 4bab05c071b1 Credits István Márton Required...

accommodation.tcd.ie Cross Site Scripting vulnerability OBB-3538712

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

SUSE CVE-2009-5030

The tcdfreeencode function in tcd.c in OpenJPEG 1.3 through 1.5 allows remote attackers to cause a denial of service memory corruption and possibly execute arbitrary code via crafted tile information in a Gray16 TIFF image, which causes insufficient memory to be allocated and leads to an "invalid...

SUSE CVE-2016-4797

Divide-by-zero vulnerability in the opjtcdinittile function in tcd.c in OpenJPEG before 2.1.1 allows remote attackers to cause a denial of service application crash via a crafted jp2 file. NOTE: this issue exists because of an incorrect fix for CVE-2014-7947...

OpenJPEG Denial of Service Vulnerability (CNVD-2017-25671)

OpenJPEG is a C-based open source JPEG 2000 codec . A denial of service vulnerability exists in the 'opjtcdcodeblockencallocatedata' function in the lib/openjp2/tcd.c file in OpenJPEG version 2.2.0. A remote attacker could exploit this vulnerability to cause a denial of service heap buffer overfl...

DEBIAN-CVE-2016-4797

Divide-by-zero vulnerability in the opjtcdinittile function in tcd.c in OpenJPEG before 2.1.1 allows remote attackers to cause a denial of service application crash via a crafted jp2 file. NOTE: this issue exists because of an incorrect fix for CVE-2014-7947...

OpenJPEG De-Zero Error Vulnerability

OpenJPEG is a C-based open source JPEG 2000 codec . A divide-by-zero error vulnerability exists in the 'opjtcdinittile' function in OpenJPEG's tcd.c file. An attacker could exploit this vulnerability to cause unknown impact...

DEBIAN-CVE-2015-6581

Double free vulnerability in the opjj2kcopydefaulttcpandcreatetcd function in j2k.c in OpenJPEG before r3002, as used in PDFium in Google Chrome before 45.0.2454.85, allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption by triggering a...

PT-2012-1162 · Openjpeg +3 · Openjpeg +3

Name of the Vulnerable Software and Affected Versions: OpenJPEG versions 1.3 through 1.5 Description: The issue allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted tile information in a Gray16 TIFF image. This is due to the tcd free encode function...