Vulnerabilities > Techsmith > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-08-18 | CVE-2015-5487 | Cross-site Scripting vulnerability in Techsmith Camtasia Relay Cross-site scripting (XSS) vulnerability in the Camtasia Relay module 6.x-2.x before 6.x-3.2 and 7.x-2.x before 7.x-1.3 for Drupal allows remote authenticated users with the "view meta information" permission to inject arbitrary web script or HTML via unspecified vectors related to the meta access tab. | 4.3 |
| 2012-09-07 | CVE-2010-5234 | Unspecified vulnerability in Techsmith Camtasia Studio 7.0.1 Multiple untrusted search path vulnerabilities in Camtasia Studio 7.0.1 build 57 allow local users to gain privileges via a Trojan horse (1) MFC90ENU.DLL or (2) MFC90LOC.DLL file in the current working directory, as demonstrated by a directory that contains a .cmmp or .camrec file. local techsmith | 6.9 |
| 2009-02-05 | CVE-2008-6061 | Cross-Site Scripting vulnerability in Techsmith Camtasia Studio Cross-site scripting (XSS) vulnerability in ActionScript in arbitrary Shockwave Flash (SWF) controller files created by Techsmith Camtasia Studio before 5 allows remote attackers to inject arbitrary additional SWF content via a URL in the csPreloader parameter. | 4.3 |