CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2017-13138 – Bridge - Creative Multipurpose WordPress Theme < 11.2 - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2017-13138
DOM based Cross-site scripting (XSS) vulnerability in the Bridge theme before 11.2 for WordPress allows remote attackers to inject arbitrary JavaScript. Una vulnerabilidad Cross-Site Scripting (XSS) basada en DOM en el tema Bridge en versiones anteriores a la 11.2 para WordPress permite que atacantes remotos inyecten JavaScript arbitrario. • http://bridge.qodeinteractive.com/change-log http://imgur.com/a/OT9vl https://wpvulndb.com/vulnerabilities/8892 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 10.0EPSS: 2%CPEs: 6EXPL: 1CVE-2015-3112 – Photoshop CC2014 / Bridge CC 2014 - '.png' Parsing Memory Corruption
https://notcve.org/view.php?id=CVE-2015-3112
Adobe Photoshop CC before 16.0 (aka 2015.0.0) and Adobe Bridge CC before 6.11 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. Adobe Photoshop CC anterior a 16.0 (también conocido como 2015.0.0) y Adobe Bridge CC anterior a 6.11 permiten a atacantes ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados. • https://www.exploit-db.com/exploits/37348 http://www.securityfocus.com/bid/75245 http://www.securitytracker.com/id/1032658 http://www.securitytracker.com/id/1032659 https://helpx.adobe.com/security/products/bridge/apsb15-13.html https://helpx.adobe.com/security/products/photoshop/apsb15-12.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 2%CPEs: 6EXPL: 1CVE-2015-3111 – Photoshop CC2014 / Bridge CC 2014 - '.png' Parsing Memory Corruption
https://notcve.org/view.php?id=CVE-2015-3111
Heap-based buffer overflow in Adobe Photoshop CC before 16.0 (aka 2015.0.0) and Adobe Bridge CC before 6.11 allows attackers to execute arbitrary code via unspecified vectors. Desbordamiento de buffer basado en memoria dinámica en Adobe Photoshop CC anterior a 16.0 (también conocido como 2015.0.0) y Adobe Bridge CC anterior a 6.11 permite a atacantes ejecutar código arbitrario a través de vectores no especificados. • https://www.exploit-db.com/exploits/37348 http://www.securityfocus.com/bid/75240 http://www.securitytracker.com/id/1032658 http://www.securitytracker.com/id/1032659 https://helpx.adobe.com/security/products/bridge/apsb15-13.html https://helpx.adobe.com/security/products/photoshop/apsb15-12.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 9%CPEs: 6EXPL: 1CVE-2015-3110 – Photoshop CC2014 / Bridge CC 2014 - '.gif' Parsing Memory Corruption
https://notcve.org/view.php?id=CVE-2015-3110
Integer overflow in Adobe Photoshop CC before 16.0 (aka 2015.0.0) and Adobe Bridge CC before 6.11 allows attackers to execute arbitrary code via unspecified vectors. Desbordamiento de enteros en Adobe Photoshop CC anterior a 16.0 (también conocido como 2015.0.0) y Adobe Bridge CC anterior a 6.11 permite a atacantes ejecutar código arbitrario a través de vectores no especificados. • https://www.exploit-db.com/exploits/37347 http://www.securityfocus.com/bid/75243 http://www.securitytracker.com/id/1032658 http://www.securitytracker.com/id/1032659 https://helpx.adobe.com/security/products/bridge/apsb15-13.html https://helpx.adobe.com/security/products/photoshop/apsb15-12.html • CWE-189: Numeric Errors •
CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2007-1279
https://notcve.org/view.php?id=CVE-2007-1279
Unspecified vulnerability in the installer for Adobe Bridge 1.0.3 update for Apple OS X, when patching with desktop management tools, allows local users to gain privileges via unspecified vectors during installation of the update by a different user who has administrative privileges. Una vulnerabilidad no especificada en el instalador para la actualización de Adobe Bridge versión 1.0.3 para Apple OS X, al aplicar parches con herramientas de administración de escritorio, permite a usuarios locales alcanzar privilegios por medio de vectores no especificados durante la instalación de la actualización de un usuario diferente que tiene privilegios administrativos. • http://secunia.com/advisories/24854 http://www.adobe.com/support/security/bulletins/apsb07-09.html http://www.osvdb.org/34896 http://www.securityfocus.com/bid/23404 http://www.securitytracker.com/id?1017900 http://www.vupen.com/english/advisories/2007/1342 https://exchange.xforce.ibmcloud.com/vulnerabilities/33570 •