PT-2021-23540 · Unknown · Topease Platform

Name of the Vulnerable Software and Affected Versions: TopEase Platform versions prior to 7.1.28 Description: The issue allows an authenticated remote attacker to bypass access controls and view sensitive components, such as the Shape Editor and Settings, which are intended for higher-privileged...

php: Heap buffer overflow in function exif_process_IFD_TAG()

When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exifprocessIFDTAG function. This may lead to information disclosure or crash...