Amel Bouziane-Leblond discovered that LibreOffice incorrectly handled
graphic on-click bindings. If a user were tricked into clicking a graphic
in a specially crafted document, a remote attacker could possibly run
arbitrary script.
More Stories
php-tcpdf-6.8.0-1.fc41
FEDORA-2024-7d6412477b Packages in this update: php-tcpdf-6.8.0-1.fc41 Update description: Version 6.8.0 (2024-12-23) Requires PHP 7.1+ and curl extension. Escape error message....
php-tcpdf-6.8.0-1.fc40
FEDORA-2024-d6b0e72e3d Packages in this update: php-tcpdf-6.8.0-1.fc40 Update description: Version 6.8.0 (2024-12-23) Requires PHP 7.1+ and curl extension. Escape error message....
ZDI-24-1741: WSO2 API Manager SynapseArtifactUploaderAdmin Unrestricted File Upload Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of WSO2 API Manager. Authentication is required to...
ZDI-24-1740: WSO2 API Manager Exposed Dangerous Function Authentication Bypass Vulnerability
This vulnerability allows remote attackers to bypass authentication on affected installations of WSO2 API Manager. Authentication is not required to...
ZDI-24-1739: Foxit PDF Reader Link Following Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Foxit PDF Reader. An attacker must first obtain...
ZDI-24-1738: Foxit PDF Reader AcroForm Memory Corruption Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required...