[SECURITY] Fedora 43 Update: forgejo-13.0.2-1.fc43

Forgejo pronounced /for=CB=88d=CD=A1=CA=92e.jo/ is a lightweight software f orge. Use it to host git repositories, track their issues and allow people to contribute to them!...

CVE-2025-9573

The CVE-2025-9573 entry concerns TYPO3 ns_backup (ns-backup) extension versions up to 13.0.2, where a command injection flaw exists in the generateBackup function. The root cause is improper handling of input that leads to arbitrary command execution when an administrator uses the extension’s bac...

CVE-2025-9573 Command Injection in extension "TYPO3 Backup Plus" (ns_backup)

The nsbackup extension through 13.0.2 for TYPO3 allows command injection...

TYPO3 ns_backup 安全漏洞

TYPO3 nsbackup is a TYPO3 extension to the TYPO3 open source. A security vulnerability exists in TYPO3 nsbackup version 13.0.2 and earlier that stems from allowing command injection...

CVE-2023-46816

An issue was discovered in SugarCRM 12 before 12.0.4 and 13 before 13.0.2. A Server Site Template Injection SSTI vulnerability has been identified in the GecControl action. By using a crafted request, custom PHP code can be injected via the GetControl action because of missing input validation. A...

SugarCRM 13.0.1 Server-Side Template Injection

---------------------------------------------------------------------------- SugarCRM = 13.0.1 GetControl Server-Side Template Injection Vulnerability ---------------------------------------------------------------------------- - Software Link: https://www.sugarcrm.com - Affected Versions: Versio...

UBUNTU-CVE-2021-37517

An Access Control vulnerability exists in Dolibarr ERP/CRM 13.0.2, fixed version is 14.0.0,in the forgot-password function becuase the application allows email addresses as usernames, which can cause a Denial of Service...

PT-2022-10655 · Unknown · Dolibarr Erp/Crm

Name of the Vulnerable Software and Affected Versions: Dolibarr ERP/CRM versions 13.0.2 through 13.0.2 Description: An Access Control issue exists in the forgot-password function because the application allows email addresses as usernames, which can cause a Denial of Service. The issue is related...

Dolibarr 代码注入漏洞

Dolibarr is a software application. A modern software package to help manage your organization's activities. A security vulnerability exists in Dolibarr 13.0.2 that allows an attacker to remotely execute PHP code...

PT-2021-16880 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: Dolibarr versions 3.3.beta1 20121221 through 13.0.2 Description: The issue allows admin level users to change other user's details but fails to validate already existing Login name, while renaming the user Login. This leads to complete accoun...

CVE-2019-7844

Adobe Media Encoder version 13.0.2 has an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure...

Out-of-bounds

Adobe Media Encoder version 13.0.2 has an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure...

CVE-2019-7842

Adobe Media Encoder version 13.0.2 has a use-after-free vulnerability. Successful exploitation could lead to remote code execution...

Adobe Media Encoder Buffer Overflow Vulnerability

Adobe Media Encoder is an audio and video encoding application from the American company Audobee Adobe. A buffer overflow vulnerability exists in version 13.0.2 of Adobe Media Encoder for Windows and macOS-based platforms, which originates when a networked system or product performs an operation ...