Vulnerabilities > Adobe > Robohelp Server > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-11-22 | CVE-2021-42727 | Out-of-bounds Write vulnerability in Adobe Robohelp Server Adobe Bridge 11.1.1 (and earlier) is affected by a stack overflow vulnerability due to insecure handling of a crafted file, potentially resulting in arbitrary code execution in the context of the current user. | 9.3 |
2021-06-28 | CVE-2021-28588 | Path Traversal vulnerability in Adobe Robohelp Server Adobe RoboHelp Server version 2019.0.9 (and earlier) is affected by a Path Traversal vulnerability when parsing a crafted HTTP POST request. | 9.0 |
2009-09-04 | CVE-2009-3068 | Permissions, Privileges, and Access Controls vulnerability in Adobe Robohelp Server 8 Unrestricted file upload vulnerability in the RoboHelpServer Servlet (robohelp/server) in Adobe RoboHelp Server 8 allows remote attackers to execute arbitrary code by uploading a Java Archive (.jsp) file during a PUBLISH action, then accessing it via a direct request to the file in the robohelp/robo/reserved/web directory under its sessionid subdirectory, as demonstrated by the vd_adobe module in VulnDisco Pack Professional 8.7 through 8.11. | 9.3 |