2 matches found
EUVD-2026-32728
A stored cross-site scripting XSS vulnerability exists in the notification panel of CTI Transmute in versions prior to the patched release. Notification messages containing user-controlled convert names were rendered in the notification bell dropdown using innerHTML without adequate sanitization...
CVE-2025-29699
NetSurf 3.11 is vulnerable to Use After Free in domnodesettextcontent function...