3 matches found
CVE-2017-3104
Adobe RoboHelp for Windows is affected by a cross-site scripting (XSS) vulnerability in CVE-2017-3104, impacting versions before RH12.0.4.460 and RH2017 before RH2017.0.2. The underlying issue is input validation, enabling injection of malicious script when handling user data. Mitigation is avail...
CVE-2021-21070
CVE-2021-21070 (Adobe RoboHelp) affects RoboHelp 2020.0.3 and earlier; root cause is an uncontrolled search path element that can enable privilege escalation. An attacker with write access on the host could escalate to higher privileges by exploiting the vulnerable RoboHelp. The issue is reported...
CVE-2017-3105
Adobe RoboHelp for Windows is affected by CVE-2017-3105 (Open Redirect). The vulnerability impacts RoboHelp RH before 12.0.4.460 and RH2017 before RH2017.0.2. Underlying issue: open redirection could lead users to a malicious site. Mitigation: patch releases APSB17-25 specify RoboHelp updates to ...