Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by a privilege escalation vulnerability in the Digital Editions installer. An authenticated attacker could leverage this vulnerability to escalate privileges. User interaction is required before product...
Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary file write vulnerability in the Digital Editions installer. An authenticated attacker could leverage this vulnerability to write an arbitrary file to the system....
Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary command execution vulnerability. An authenticated attacker could leverage this vulnerability to execute arbitrary commands. User interaction is required to abuse this vulnerability in...
Photoshop Elements versions 2021 build 19.0 (20210304.m.156367) (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue...
Adobe Premiere Elements version 2021.2235820 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious png file, potentially resulting in arbitrary code execution in the context of the...
Adobe svg-native-viewer 8182d14dfad5d1e10f53ed830328d7d9a3cfa96d and earlier versions are affected by a heap buffer overflow vulnerability due to insecure handling of a malicious .svg file, potentially resulting in arbitrary code execution in the context of the...
Adobe InCopy version 11.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious XML file, potentially resulting in arbitrary code execution in the context of the current...
Adobe InCopy version 11.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious TIFF file, potentially resulting in arbitrary code execution in the context of the current...
Webauthn Framework 3.3.x before 3.3.4 has Incorrect Access Control. An attacker that controls a user’s system is able to login to a vulnerable service using an attached FIDO2 authenticator without passing a check of...
nltk is vulnerable to Inefficient Regular Expression Complexity Date published : 2021-09-27 https://huntr.dev/bounties/d19aed43-75bc-4a03-91a0-4d0bb516bc32 https://github.com/nltk/nltk/commit/277711ab1dec729e626b27aab6fa35ea5efbd7e6
jsoneditor is vulnerable to Inefficient Regular Expression Complexity Date published : 2021-09-27 https://huntr.dev/bounties/1e3ed803-b7ed-42f1-a4ea-c4c75da9de73 https://github.com/josdejong/jsoneditor/commit/092e386cf49f2a1450625617da8e0137ed067c3e
inflect is vulnerable to Inefficient Regular Expression Complexity Date published : 2021-09-27 https://huntr.dev/bounties/4612b31a-072b-4f61-a916-c7e4cbc2042a https://github.com/pksunkara/inflect/commit/a9a0a8e9561c3487854c7cae42565d9652ec858b
firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF) Date published : 2021-09-27 https://huntr.dev/bounties/da82f7b6-4ffc-4109-87a4-a2a790bd44e5 https://github.com/firefly-iii/firefly-iii/commit/578f350498b75f31d321c78a608c7f7b3b7b07e9
grav is vulnerable to Reliance on Cookies without Validation and Integrity Checking Date published : 2021-09-27 https://huntr.dev/bounties/c2bc65af-7b93-4020-886e-8cdaeb0a58ea https://github.com/getgrav/grav/commit/c51fb1779b83f620c0b6f3548d4a96322b55df07