Vulnerabilities > Techsmith
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-08-18 | CVE-2015-5487 | Cross-site Scripting vulnerability in Techsmith Camtasia Relay Cross-site scripting (XSS) vulnerability in the Camtasia Relay module 6.x-2.x before 6.x-3.2 and 7.x-2.x before 7.x-1.3 for Drupal allows remote authenticated users with the "view meta information" permission to inject arbitrary web script or HTML via unspecified vectors related to the meta access tab. | 4.3 |
| 2012-09-07 | CVE-2010-5234 | Unspecified vulnerability in Techsmith Camtasia Studio 7.0.1 Multiple untrusted search path vulnerabilities in Camtasia Studio 7.0.1 build 57 allow local users to gain privileges via a Trojan horse (1) MFC90ENU.DLL or (2) MFC90LOC.DLL file in the current working directory, as demonstrated by a directory that contains a .cmmp or .camrec file. local techsmith | 6.9 |
| 2010-08-26 | CVE-2010-3130 | Unspecified vulnerability in Techsmith Snagit 10.0.0 Untrusted search path vulnerability in TechSmith Snagit all versions 10.x and 11.x allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a snag, snagcc, or snagprof file. | 9.3 |
| 2009-02-05 | CVE-2008-6061 | Cross-Site Scripting vulnerability in Techsmith Camtasia Studio Cross-site scripting (XSS) vulnerability in ActionScript in arbitrary Shockwave Flash (SWF) controller files created by Techsmith Camtasia Studio before 5 allows remote attackers to inject arbitrary additional SWF content via a URL in the csPreloader parameter. | 4.3 |