CVE-2022-0392

A flaw was found in vim. The vulnerability occurs due to illegal memory access with bracketed paste in Ex mode and leads to a heap buffer overflow. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. Mitigation Untrusted vim scripts with -s script...

Copy paste for some data works with Citrix Receiver 14.x but NOT with Citrix Workspace app.

Post upgrade from Citrix Receiver 14.x to Citrix Workspace app, copy and paste no longer works for some data from the published application to local workstation. Some types of data for example simple text do work as expected, but other data doesn't like, Copy tables data and paste it to Excel at...

Copy & Paste of files is not working through RDP proxy session

Textual data can be copied through RDP session but copying a file is not working, paste icon is greyed out In the downloaded rdp file, only clipboard redirection is enabled, drive redirection is disabled redirectclipboard:i:1 redirectdrives:i:0...

GHSA-2HFJ-CXW7-G45P Unsafe inline XSS in pasting DOM element into chat

Impact Inline scripts are executed when Javascript is parsed via a paste action. 1. Open https://watch.owncast.online/ 2. Copy and then paste into the chat field. 3. An alert should pop up. Patches ⋮ 13 │ // Content security policy ⋮ 14 │ csp := string ⋮ 15 │ "script-src 'self'...

Owncast 跨站脚本漏洞

Owncast is an open source, self-hosted, decentralized, single-user real-time video streaming and chat server. A cross-site scripting vulnerability exists in Owncast, which in affected versions executes inline script when parsing Javascript via a paste operation...

Inclusion of Functionality from Untrusted Control Sphere in CKEditor 4

It was possible to execute a ReDoS-type attack inside CKEditor 4 before 4.16 by persuading a victim to paste crafted URL-like text into the editor, and then press Enter or Space in the Autolink plugin...

GHSA-QH7X-J4V8-QW5W Clipboard-based XSS

Impact XSS against the user. Details jsuites is vulnerable to DOM based XSS if the user can be tricked into copying anything from a malicious and pasting it into the html editor. This is because a part of the clipboard content is directly written to innerHTML causing XSS. References The Curious...

CVE-2021-32202

In CS-Cart version 4.11.1, it is possible to induce copy-paste XSS by manipulating the "post description" filed in the blog post creation page...

kernel: use-after-free in n_tty_receive_buf_common function in drivers/tty/n_tty.c

A use-after-free flaw was found in the Linux kernel console driver when using the copy-paste buffer. This flaw allows a local user to crash the system...

Telegram Desktop 2.9.2 - Denial of Service (PoC)

Exploit Title: Telegram Desktop 2.9.2 - Denial of Service PoC Exploit Author: Aryan Chehreghani Date: 2021-08-30 Vendor Homepage: https://telegram.org Software Link: https://telegram.org/dl/desktop/win64 Tested Version: 2.9.2 x64 Tested on OS: Windows 10 Enterprise About App Telegram is a messagi...

kernel: use-after-free in n_tty_receive_buf_common function in drivers/tty/n_tty.c

A use-after-free flaw was found in the Linux kernel console driver when using the copy-paste buffer. This flaw allows a local user to crash the system...

CVE-2021-40147

EmTec ZOC before 8.02.2 allows \e201 pastes, a different vulnerability than CVE-2021-32198...

GHSA-7889-RM5J-HPGG Clipboard feature vulnerability allowing to inject arbitrary HTML into the editor using paste functionality

Affected packages The vulnerability has been discovered in clipboard plugin. All plugins with clipboard plugin dependency are affected: clipboard pastetext pastetools widget uploadwidget autolink tableselection Impact A potential vulnerability has been discovered in CKEditor 4 Clipboard package...

Clipboard feature vulnerability allowing to inject arbitrary HTML into the editor using paste functionality

Affected packages The vulnerability has been discovered in clipboard plugin. All plugins with clipboard plugin dependency are affected: clipboard pastetext pastetools widget uploadwidget autolink tableselection Impact A potential vulnerability has been discovered in CKEditor 4 Clipboard package...

Clipboard feature vulnerability allowing to inject arbitrary HTML into the editor using paste functionality

Affected packages The vulnerability has been discovered in clipboard plugin. All plugins with clipboard plugin dependency are affected: clipboard pastetext pastetools widget uploadwidget autolink tableselection Impact A potential vulnerability has been discovered in CKEditor 4 Clipboard package...

Cross-Site Scripting (XSS)

ckeditor is vulnerable to cross-site scripting XSS. An attacker is able to inject and execute arbitrary Javascript in a user's browser via the paste functionality...

How to troubleshoot hardware problems that look like malware problems

Sometimes it’s hard to figure out what exactly is going wrong with your computer. What do you do if you’ve run all the scans, checked all the files, and everything says the PC is malware free? Here’s a list of common problems that resemble cybersecurity issues, but could be caused by something...

CVE-2021-37326

NetSarang Xshell 7 before Build 0077 includes unintended code strings in paste operations...

CVE-2021-37326

NetSarang Xshell 7 before Build 0077 includes unintended code strings in paste operations...

Code injection

NetSarang Xshell 7 before Build 0077 includes unintended code strings in paste operations...