Lucene search

K

Documentcloud Security Vulnerabilities

cve
cve

CVE-2015-2807

Cross-site scripting (XSS) vulnerability in js/window.php in the Navis DocumentCloud plugin before 0.1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the wpbase...

5.9AI Score

0.003EPSS

2015-09-01 02:59 PM
23
cve
cve

CVE-2013-1933

The extract_from_ocr function in lib/docsplit/text_extractor.rb in the Karteek Docsplit (karteek-docsplit) gem 0.5.4 for Ruby allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a PDF...

7.5AI Score

0.003EPSS

2013-04-25 11:55 PM
22