CVE-2023-45826

Leantime is an open source project management system. A 'userId' variable in app/domain/files/repositories/class.files.php is not parameterized. An authenticated attacker can send a carefully crafted POST request to /api/jsonrpc to exploit an SQL injection vulnerability. Confidentiality is impact...

Adobe Photoshop CC 19.x < 19.1.8 / CC 20.x < 20.0.4 Vulnerability (macOS APSB19-15)

The version of Adobe Photoshop CC installed on the remote macOS or Mac OS X host is prior to 19.1.8/20.0.4. It is, therefore, affected by a vulnerability as referenced in the apsb19-15 advisory. - Adobe Photoshop CC 19.1.7 and earlier, and 20.0.2 and earlier have a heap corruption vulnerability...