CVE-2009-4518

Cross-site scripting XSS vulnerability in the Insert Node module 5.x before 5.x-1.2 for Drupal allows remote attackers to inject arbitrary web script or HTML via an inserted node...

CVE-2025-15411

A weakness has been identified in WebAssembly wabt up to 1.0.39. This vulnerability affects the function wabt::AST::InsertNode of the file /src/repro/wabt/bin/wasm-decompile of the component wasm-decompile. This manipulation causes memory corruption. It is possible to launch the attack on the loc...

WebAssembly wabt 缓冲区错误漏洞

WebAssembly wabt is a WebAssembly binary toolkit open-sourced by WebAssembly. A buffer error vulnerability exists in WebAssembly wabt 1.0.39 and prior versions, which originates from a memory corruption in the wabt::AST::InsertNode function in the wasm-decompile component file...

EUVD-2009-4484

Malware in sbrugna...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the InsertNodeAsParent function in parser.c. An attacker can cause a crash and denial of service by triggering a null pointer dereference through local access. Remediation There is no fixed version for...

DEBIAN-CVE-2025-6496

A vulnerability was found in HTACG tidy-html5 5.8.0. It has been declared as problematic. This vulnerability affects the function InsertNodeAsParent of the file src/parser.c. The manipulation leads to null pointer dereference. Local access is required to approach this attack. The exploit has been...

HTACG HTML Tidy 安全漏洞

HTACG HTML Tidy is an open source HTML tool from HTML Tidy Advocacy Community Group. A security vulnerability exists in HTACG HTML Tidy version 5.8.0 due to a null pointer dereference in the function InsertNodeAsParent in the file src/parser.c. The vulnerability is caused by the presence of a nul...

Mozilla: Use-after-free while replacing/inserting a node in a document (MFSA 2012-38)

Use-after-free vulnerability in the nsINode::ReplaceOrInsertBefore function in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 might allow remote attackers to execute arbitrary code via...

Cross site scripting

Cross-site scripting XSS vulnerability in the Insert Node module 5.x before 5.x-1.2 for Drupal allows remote attackers to inject arbitrary web script or HTML via an inserted node...

CVE-2009-4518

Cross-site scripting XSS vulnerability in the Insert Node module 5.x before 5.x-1.2 for Drupal allows remote attackers to inject arbitrary web script or HTML via an inserted node...

CVE-2009-4518

CVE-2009-4518 affects Drupal’s Insert Node module 5.x before 5.x-1.2. It enables remote attackers to inject arbitrary web script or HTML via an inserted node, resulting in a cross-site scripting (XSS) vulnerability. The affected component is the Insert Node module (5.x line); the root cause is im...

CVE-2009-4518

Cross-site scripting XSS vulnerability in the Insert Node module 5.x before 5.x-1.2 for Drupal allows remote attackers to inject arbitrary web script or HTML via an inserted node...