Sync

sync

3 CVEs • 7 products

Products (7)

Click to collapse

Toggle

Oxygen Xml Author

oxygen_xml_author

Oxygen Xml Developer

oxygen_xml_developer

Oxygen Xml Editor

oxygen_xml_editor

Oxygen Publishing Engine

oxygen_publishing_engine

Oxygen Xml Webhelp

oxygen_xml_webhelp

Oxygen Content Fusion

oxygen_content_fusion

Oxygen Xml Web Author

oxygen_xml_web_author

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-26559 1Sync 2Oxygen Content Fusion Oxygen Xml Web Author Feb 7, 2025 Apr 14, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 A directory traversal vulnerability in Oxygen XML Web Author before 25.0.0.3 build 2023021715 and Oxygen Content Fusion before 5.0.3 build 2023022015 allows an attacker to read files from a WEB-INF directory via a crafte...Show more A directory traversal vulnerability in Oxygen XML Web Author before 25.0.0.3 build 2023021715 and Oxygen Content Fusion before 5.0.3 build 2023022015 allows an attacker to read files from a WEB-INF directory via a crafted HTTP request. (XML Web Author 24.1.0.3 build 2023021714 and 23.1.1.4 build 2023021715 are also fixed versions.)Show less
CVE-2021-46827 1Sync 5Oxygen Publishing Engine Oxygen Xml AuthorOxygen Xml Developer+2 more Nov 21, 2024 Jul 13, 2022 N/A· v4 6.1 MEDIUM· v3 N/A· v2 An issue was discovered in Oxygen XML WebHelp before 22.1 build 2021082006 and 23.x before 23.1 build 2021090310. An XSS vulnerability in search terms proposals (in online documentation generated using Oxygen XML WebHelp...Show more An issue was discovered in Oxygen XML WebHelp before 22.1 build 2021082006 and 23.x before 23.1 build 2021090310. An XSS vulnerability in search terms proposals (in online documentation generated using Oxygen XML WebHelp) allows attackers to execute JavaScript by convincing a user to type specific text in the WebHelp output search field.Show less
CVE-2019-20191 1Sync 3Oxygen Xml Author Oxygen Xml DeveloperOxygen Xml Editor Nov 21, 2024 Mar 16, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Oxygen XML Editor 21.1.1 allows XXE to read any file.