CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

31 matches found

RedhatCVE•added 2026/01/07 9:28 a.m.•4 views

CVE-2019-12136

There is XSS in BoostIO Boostnote 0.11.15 via a label named mermaid, as demonstrated by a crafted SRC attribute of an IFRAME element...

5.4CVSS5.6AI score0.00191EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:26 a.m.•3 views

CVE-2019-12184

There is XSS in browser/components/MarkdownPreview.js in BoostIO Boostnote 0.11.15 via a label named flowchart, sequence, gallery, or chart, as demonstrated by a crafted SRC attribute of an IFRAME element, a different vulnerability than CVE-2019-12136...

5.4CVSS5.9AI score0.00206EPSS

Exploits2References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-3833

Malware in sbrugna...

5.4CVSS5.5AI score0.00206EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-5376

Malware in sbrugna...

6.1CVSS6.3AI score0.0024EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-3787

Malware in sbrugna...

5.4CVSS5.4AI score0.00191EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-11820

Malware in sbrugna...

5.4CVSS5.5AI score0.00261EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 4:9 p.m.•2 views

CVE-2020-19924

In Boostnote 0.12.1, exporting to PDF contains opportunities for XSS attacks...

5.4CVSS6.1AI score0.00261EPSS

Exploits1

CNVD•added 2021/05/20 12:0 a.m.•4 views

BoostIO Boostnote Cross-Site Scripting Vulnerability

BoostIO Boostnote is a Markdown editor that supports multiple platforms. Boostnote 0.12.1 suffers from a cross-site scripting vulnerability that stems from an export to PDF containing an opportunity for XSS attacks. No detailed vulnerability details are provided at this time...

5.4CVSS5.5AI score0.00261EPSS

Exploits1References1

NVD•added 2021/05/18 8:15 p.m.•6 views

CVE-2020-19924

In Boostnote 0.12.1, exporting to PDF contains opportunities for XSS attacks...

5.4CVSS0.00261EPSS

Exploits1References1

OSV•added 2021/05/18 8:15 p.m.•8 views

CVE-2020-19924

In Boostnote 0.12.1, exporting to PDF contains opportunities for XSS attacks...

5.4CVSS6.2AI score

Exploits0References1

Prion•added 2021/05/18 8:15 p.m.•5 views

Cross site scripting

In Boostnote 0.12.1, exporting to PDF contains opportunities for XSS attacks...

3.5CVSS5.3AI score0.00261EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/05/18 7:38 p.m.•13 views

CVE-2020-19924

In Boostnote 0.12.1, exporting to PDF contains opportunities for XSS attacks...

5.3AI score0.00261EPSS

Exploits1References1

CVE•added 2021/05/18 7:38 p.m.•31 views

CVE-2020-19924

Boostnote 0.12.1 exports to PDF and exposes a cross-site scripting (XSS) vulnerability. Primary sources (CVE entries and mirrors in Red Hat/CNVD/OSV/CVE catalogs) consistently describe an XSS risk arising during PDF export, but do not provide concrete exploit vectors, affected subcomponents, or a...

5.4CVSS5.2AI score0.00261EPSS

Exploits1References1Affected Software1

CNNVD•added 2021/05/18 12:0 a.m.•1 views

BoostIO Boostnote 跨站脚本漏洞

5.4CVSS5.1AI score0.00261EPSS

Exploits1References2

NVD•added 2019/05/19 7:29 p.m.•14 views

CVE-2019-12184

5.4CVSS5.2AI score0.00206EPSS

Exploits1References1

Prion•added 2019/05/19 7:29 p.m.•11 views

Cross site scripting

3.5CVSS5.2AI score0.00206EPSS

Exploits2References1Affected Software1

OSV•added 2019/05/19 7:29 p.m.•10 views

CVE-2019-12184

5.4CVSS5.3AI score

Exploits0References1

Cvelist•added 2019/05/19 7:0 p.m.•9 views

CVE-2019-12184

5.2AI score0.00206EPSS

Exploits1References1

CVE•added 2019/05/19 7:0 p.m.•36 views

CVE-2019-12184

CVE-2019-12184 affects BoostIO Boostnote 0.11.15. The vulnerability is an XSS in browser/components/MarkdownPreview.js triggered via a label named flowchart, sequence, gallery, or chart, demonstrated by a crafted SRC attribute of an IFRAME element. The connected Red Hat CVE-2019-12184 entry mirro...

5.4CVSS5.1AI score0.00206EPSS

Exploits1References1Affected Software1

OSV•added 2019/05/16 3:29 a.m.•10 views

CVE-2019-12136

There is XSS in BoostIO Boostnote 0.11.15 via a label named mermaid, as demonstrated by a crafted SRC attribute of an IFRAME element...

5.4CVSS5.2AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by