← Back

Objective Development

objective_development

5 CVEs • 3 products

Products (3)

Click to collapse
Toggle
Sharity
sharity
2 CVEs
Little Snitch
little_snitch
2 CVEs
Webyep
webyep
1 CVE

CVEs (5)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-10470
1Objective Development
1Little Snitch
Nov 21, 2024
Jun 12, 2018
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
Little Snitch versions 4.0 to 4.0.6 use the SecStaticCodeCheckValidityWithErrors() function without the kSecCSCheckAllArchitectures flag and therefore do not validate all architectures stored in a fat binary. An attacker...Show more
Little Snitch versions 4.0 to 4.0.6 use the SecStaticCodeCheckValidityWithErrors() function without the kSecCSCheckAllArchitectures flag and therefore do not validate all architectures stored in a fat binary. An attacker can maliciously craft a fat binary containing multiple architectures that may cause a situation where Little Snitch treats the running process as having no code signature at all while erroneously indicating that the binary on disk does have a valid code signature. This could lead to users being confused about whether or not the code signature is valid.Show less
CVE-2017-2675
2Obdev
Objective Development
2Little Snitch
Little Snitch
May 13, 2026
Apr 6, 2017
N/A· v4
7.8 HIGH· v3
4.6 MEDIUM· v2
Little Snitch version 3.0 through 3.7.3 suffer from a local privilege escalation vulnerability in the installer part. The vulnerability is related to the installation of the configuration file "at.obdev.littlesnitchd.pli...Show more
Little Snitch version 3.0 through 3.7.3 suffer from a local privilege escalation vulnerability in the installer part. The vulnerability is related to the installation of the configuration file "at.obdev.littlesnitchd.plist" which gets installed to /Library/LaunchDaemons.Show less
CVE-2008-4057
1Objective Development
1Sharity
Apr 23, 2026
Sep 11, 2008
N/A· v4
N/A· v3
10.0 HIGH· v2
Unspecified vulnerability in Objective Development Sharity 3 before 3.5 has unknown impact and attack vectors, related to a "serious security problem."
CVE-2007-2178
1Objective Development
1Sharity
Apr 23, 2026
Apr 24, 2007
N/A· v4
N/A· v3
7.8 HIGH· v2
Multiple unspecified vulnerabilities in Objective Development Sharity before 3.3 allow remote attackers to cause a denial of service (daemon crash) via unspecified vectors.
CVE-2006-5220
1Objective Development
1Webyep
Apr 23, 2026
Oct 10, 2006
N/A· v4
N/A· v3
5.1 MEDIUM· v2
Multiple PHP remote file inclusion vulnerabilities in WebYep 1.1.9, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via the webyep_sIncludePath in (1) files in the programm/lib/ dir...Show more
Multiple PHP remote file inclusion vulnerabilities in WebYep 1.1.9, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via the webyep_sIncludePath in (1) files in the programm/lib/ directory including (a) WYApplication.php, (b) WYDocument.php, (c) WYEditor.php, (d) WYElement.php, (e) WYFile.php, (f) WYHTMLTag.php, (g) WYImage.php, (h) WYLanguage.php, (i) WYLink.php, (j) WYPath.php, (k) WYPopupWindowLink.php, (l) WYSelectMenu.php, and (m) WYTextArea.php; (2) files in the programm/elements/ directory including (n) WYGalleryElement.php, (o) WYGuestbookElement.php, (p) WYImageElement.php, (q) WYLogonButtonElement.php, (r) WYLongTextElement.php, (s) WYLoopElement.php, (t) WYMenuElement.php, and (u) WYShortTextElement.php; and (3) programm/webyep.php.Show less