SUSE CVE-2026-21884

React Router is a router for React. In @remix-run/react version prior to 2.17.3. and react-router 7.0.0 through 7.11.0, a XSS vulnerability exists in in React Router's API in Framework Mode when using the getKey/storageKey props during Server-Side Rendering which could allow arbitrary JavaScript...

Cross-site Scripting (XSS)

Overview @remix-run/react is a React DOM bindings for Remix Affected versions of this package are vulnerable to Cross-site Scripting XSS via the ScrollRestoration API when using the getKey or storageKey props during server-side rendering in Framework Mode. An attacker can execute arbitrary...

React Router SSR XSS in ScrollRestoration

A XSS vulnerability exists in in React Router's API in Framework Mode when using the getKey/storageKey props during Server-Side Rendering which could allow arbitrary JavaScript execution during SSR if untrusted content is used to generate the keys. !NOTE This does not impact applications if...

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the ScrollRestoration API when using the getKey or storageKey props during server-side rendering in Framework Mode. An attacker can execute arbitrary JavaScript code by supplying untrusted content to generat...

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the ScrollRestoration API when using the getKey or storageKey props during server-side rendering in Framework Mode. An attacker can execute arbitrary JavaScript code by supplying untrusted content to generat...

SUSE CVE-2023-26154

Versions of the package pubnub before 7.4.0; all versions of the package com.pubnub:pubnub; versions of the package pubnub before 6.19.0; all versions of the package github.com/pubnub/go; versions of the package github.com/pubnub/go/v7 before 7.2.0; versions of the package pubnub before 7.3.0;...

Insufficient Entropy

Overview pubnub is a Publish & Subscribe Real-time Messaging with PubNub Affected versions of this package are vulnerable to Insufficient Entropy via the getKey function, due to inefficient implementation of the AES-256-CBC cryptographic algorithm. The provided encrypt function is less secure whe...

SUSE CVE-2021-32435

Stack-based buffer overflow in the function getkey in parse.c of abcm2ps v8.14.11 allows remote attackers to cause a Denial of Service DoS via unspecified vectors...

Eaglesoft 信任管理问题漏洞

Eaglesoft is a software application. A security vulnerability exists in Eaglesoft version 21 that stems from the presence of two methods of cracking the Get Key file...

DEBIAN-CVE-2021-32435

Stack-based buffer overflow in the function getkey in parse.c of abcm2ps v8.14.11 allows remote attackers to cause a Denial of Service DoS via unspecified vectors...

DEBIAN-CVE-2018-10771

Stack-based buffer overflow in the getkey function in parse.c in abcm2ps through 8.13.20 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact...

PT-2018-10097 · Abcm2Ps +3 · Abcm2Ps +3

Name of the Vulnerable Software and Affected Versions: abcm2ps versions 8.13.20 and earlier Description: The issue is a stack-based buffer overflow in the get key function in parse.c that allows remote attackers to cause a denial of service, resulting in an application crash, or possibly have oth...

abcm2ps 'get_key' function stack buffer overflow vulnerability

abcm2ps is a command line program that converts music tunes from ABC notation to PostScript or SVG format. A stack buffer overflow vulnerability exists in the 'getkey' function of the parse.c file in abcm2ps 8.13.20 and earlier versions. A remote attacker could exploit this vulnerability to cause...