PT-2023-20504 · Raysan5 · Raylib

Name of the Vulnerable Software and Affected Versions: raysan5/raylib versions prior to 4.5.0 Description: The issue is related to Cross-site Scripting XSS where the SetClipboardText API does not properly escape the character, allowing attacker-controlled input to break out of the string and...

PT-2020-14347 · Wolfssl · Wolfssl

Name of the Vulnerable Software and Affected Versions: wolfSSL versions prior to 4.5.0 Description: An issue allows local attackers to conduct a cache-timing attack against public key operations. This could potentially expose sensitive information if the affected system has been used for private...

Openfire 4.3.x < 4.5.0 Multiple XSS Vulnerabilities

Openfire is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

PT-2019-5531 · Ignite Realtime · Openfire

Name of the Vulnerable Software and Affected Versions: Openfire versions through 4.4.2 Description: A Server Side Request Forgery SSRF vulnerability in FaviconServlet.java allows attackers to send arbitrary HTTP GET requests. The issue is related to insufficient validation of incoming requests,...