CVE-2026-33146

Docmost (open-source wiki/docs) contains an authorization bypass vulnerability affecting versions 0.70.0–0.70.2. unauthenticated users can access restricted child page titles and text snippets via the public search endpoint POST /api/search/share-search, exposing content that should be hidden. Th...

EUVD-2020-11372

Malware in sbrugna...

CVE-2020-19467

An issue has been found in function DCTStream::transformDataUnit in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an Illegal Use After Free...

webpy 注入漏洞

webpy is a simple and powerful python web framework from webpy open source. An injection vulnerability exists in webpy version 0.70, which stems from an incorrect manipulation of the parameter seqname in the file web/db.py resulting in SQL injection...

PT-2024-22528 · Pdf2Json · Pdf2Json

Name of the Vulnerable Software and Affected Versions: pdf2json version 0.70 Description: A buffer overflow issue allows a local attacker to execute arbitrary code via the GString::copy and ImgOutputDev::ImgOutputDev function. Recommendations: For pdf2json version 0.70, consider disabling the...

pdf2json 安全漏洞

Modesty Pdf2json is Modesty individual developers of a Java-based PDF files can interact with Json files code library. A security vulnerability exists in pdf2json version v0.70. A local attacker can exploit this vulnerability to execute arbitrary code via the GString::copy and...

GLPI Injection Vulnerability

GLPI is an open source IT and asset management software for individual developers. The software provides a full-featured IT resource management interface that you can use to build databases to fully manage IT computers, monitors, servers, printers, network devices, phones, and even toner and ink...

PDF2JSON XRef::fetch Denial of Service Vulnerability

PDF2JSON is a conversion library based on XPDF 3.02 that can be used to convert PDF pages page by page to JSON and XML formats. A security vulnerability exists in the XRef::fetch function in PDF2JSON version 0.70. An attacker could exploit this vulnerability to cause a denial of service...

PT-2021-10348 · Pdf2Json · Pdf2Json

Name of the Vulnerable Software and Affected Versions: PDF2JSON version 0.70 Description: An issue in the vfprintf function allows attackers to cause a Denial of Service due to a stack overflow. Recommendations: For PDF2JSON version 0.70, at the moment, there is no information about a newer versi...

Modesty Pdf2json 代码问题漏洞

Modesty Pdf2json is a Java-based code library from Modesty's personal developer that allows PDF files to interact with Json files. PDF2JSON version 0.70 has a security vulnerability that stems from an issue found in the function DCTStream::getChar, which could be used by an attacker to cause a...

PT-2021-10349 · Pdf2Json · Pdf2Json

Name of the Vulnerable Software and Affected Versions: PDF2JSON version 0.70 Description: The issue is related to a stack overflow in the XRef::fetch function, allowing attackers to cause a Denial of Service. Recommendations: For PDF2JSON version 0.70, consider disabling the XRef::fetch function ...

markdown-it and NodeBB HTML injection vulnerability (CNVD-2016-00135)

markdown-it is a parser product. NodeBB is a forum system developed by the Design Create Play team and built using Node.js, a web application platform built on top of Google's V8 JavaScript engine. An HTML injection vulnerability exists in markdown-it versions prior to 4.1.0 and NodeBB versions...

PuTTY SSH2 Authentication Password Persistence Weakness

PuTTY does not safely handle password information. Copyright C 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribut...

x11amp.txt

Vulnerability: Any user can overwrite any file in the system. title=x11amp ver .70 authors=Mikael Alm, Thomas Nilsson, Olle Hallnas system=any that run this version [email protected] Grampa Elite Overview: To start out with I am pretty sure that I am not the one that has found this...