Page 3 of 26 results (0.003 seconds)

CVSS: 6.1EPSS: 0%CPEs: 4EXPL: 0

Adobe RoboHelp has a cross-site scripting (XSS) vulnerability. This affects versions before RH12.0.4.460 and RH2017 before RH2017.0.2. Adobe RoboHelp tiene una vulnerabilidad de Cross-Site Scripting (XSS). Esto afecta a las versiones anteriores a la versión RH12.0.4.460 y RH2017 anteriores a la RH2017.0.2. • http://www.securityfocus.com/bid/100707 http://www.securitytracker.com/id/1039319 https://helpx.adobe.com/security/products/robohelp/apsb17-25.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.1EPSS: 0%CPEs: 4EXPL: 0

Adobe RoboHelp has an Open Redirect vulnerability. This affects versions before RH12.0.4.460 and RH2017 before RH2017.0.2. Adobe RoboHelp tiene una vulnerabilidad de redirección abierta Esto afecta a las versiones anteriores a la versión RH12.0.4.460 y RH2017 anteriores a la RH2017.0.2. • http://www.securityfocus.com/bid/100709 http://www.securitytracker.com/id/1039319 https://helpx.adobe.com/security/products/robohelp/apsb17-25.html • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •

CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0

Adobe RoboHelp version 2015.0.3 and earlier, RoboHelp 11 and earlier have an input validation issue that could be used in cross-site scripting attacks. Adobe RoboHelp versión 2015.0.3 y versiones anteriores, RoboHelp 11 y versiones anteriores tienen un problema de validación de entrada que puede ser utilizado en ataques de XSS. • http://www.securityfocus.com/bid/94878 http://www.securitytracker.com/id/1037456 https://helpx.adobe.com/security/products/robohelp/apsb16-46.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 7.5EPSS: 10%CPEs: 3EXPL: 0

Adobe RoboHelp Server 9 before 9.0.1 mishandles SQL queries, which allows attackers to obtain sensitive information via unspecified vectors. Adobe RoboHelp Server 9 en versiones anteriores a 9.0.1 no maneja correctamente las consultas SQL, lo que permite a atacantes obtener información sensible a través de vectores no especificados. • http://www.securitytracker.com/id/1035557 https://helpx.adobe.com/security/products/robohelp-server/apsb16-12.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

MDBMS.dll in Adobe RoboHelp 10 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. MDBMS.dll en Adobe RoboHelp 10 permite a atacantes ejecutar código arbitrario o provcar una denegación de servicio (corrupción de memoria) a través de vectores no especificados. • http://www.adobe.com/support/security/bulletins/apsb13-24.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •