Lucene search
GoogleOSV:GHSA-36M4-6V6M-4VPRHistoryMay 29, 2019 - 6:04 p.m.
Cross-site Scripting in remarkable
2019-05-2918:04:55
Google
osv.dev
4
EPSS
0.001
Percentile
37.3%
In remarkable 1.7.1, lib/parser_inline.js mishandles URL filtering, which allows attackers to trigger XSS via unprintable characters, as demonstrated by a \x0ejavascript: URL.
Related
cvelist
cvelist
CVE-2019-12043
2019-05-13 13:05:08
cve
cve
CVE-2019-12043
2019-05-13 14:29:01
veracode
veracode
Cross-Site Scripting (XSS)
2019-05-14 13:39:40
github
github
Cross-site Scripting in remarkable
2019-05-29 18:04:55
prion
prion
Design/Logic Flaw
2019-05-13 14:29:00
nvd
nvd
CVE-2019-12043
2019-05-13 14:29:01
osv
osv
CVE-2019-12043
2019-05-13 14:29:01
githubexploit
githubexploit
Exploit for Cross-site Scripting in Remarkable Project Remarkable
2020-12-01 09:18:57