35 matches found
CVE-2022-29546
HtmlUnit NekoHtml Parser before 2.61.0 suffers from a denial of service vulnerability. Crafted input associated with the parsing of Processing Instruction PI data leads to heap memory consumption. This is similar to CVE-2022-28366 but affects a much later version of the product...
Design/Logic Flaw
HtmlUnit NekoHtml Parser before 2.61.0 suffers from a denial of service vulnerability. Crafted input associated with the parsing of Processing Instruction PI data leads to heap memory consumption. This is similar to CVE-2022-28366 but affects a much later version of the product...
PT-2022-7028 · Atlassian +2 · Jira +5
Name of the Vulnerable Software and Affected Versions: HtmlUnit NekoHtml Parser versions prior to 2.61.0 Oracle WebLogic Server affected versions not specified Oracle Fusion Middleware affected versions not specified Jira Service Management affected versions not specified Jira Work Management...
HtmlUnit 安全漏洞
HtmlUnit is an open source java page analysis tool that reads a page and can be used effectively to analyze the content on the page using HtmlUnit. HtmlUnit NekoHtml Parser2.61.0 A security vulnerability previously existed in which a crafted input related to Processing Instruction PI data parsing...
GHSA-G9HH-VVX3-V37V Denial of service in HtmlUnit-Neko
Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction PI input that causes excessive heap memory consumption. In particular, this issue exists in HtmlUnit-Neko through 2.26, and is fixed in 2.27. This issue also exists in CyberNeko HTML through 1.9.22 also...
Denial of service in HtmlUnit-Neko
Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction PI input that causes excessive heap memory consumption. In particular, this issue exists in HtmlUnit-Neko through 2.26, and is fixed in 2.27. This issue also exists in CyberNeko HTML through 1.9.22 also...
CVE-2022-28366
Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction PI input that causes excessive heap memory consumption. In particular, this issue exists in HtmlUnit-Neko through 2.26, and is fixed in 2.27. This issue also exists in CyberNeko HTML through 1.9.22 also...
UBUNTU-CVE-2022-28366
Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction PI input that causes excessive heap memory consumption. In particular, this issue exists in HtmlUnit-Neko through 2.26, and is fixed in 2.27. This issue also exists in CyberNeko HTML through 1.9.22 also...
Input validation
Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction PI input that causes excessive heap memory consumption. In particular, this issue exists in HtmlUnit-Neko through 2.26, and is fixed in 2.27. This issue also exists in CyberNeko HTML through 1.9.22 also...
CVE-2022-28366
Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction PI input that causes excessive heap memory consumption. In particular, this issue exists in HtmlUnit-Neko through 2.26, and is fixed in 2.27. This issue also exists in CyberNeko HTML through 1.9.22 also...
CVE-2022-28366
Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction PI input that causes excessive heap memory consumption. In particular, this issue exists in HtmlUnit-Neko through 2.26, and is fixed in 2.27. This issue also exists in CyberNeko HTML through 1.9.22 also...
HtmlUnit 安全漏洞
HtmlUnit is an open source java page analysis tool that reads a page and can be used effectively to analyze the content on the page using HtmlUnit. A security vulnerability exists in HtmlUnit Neko 2.26 that allows denial of service via crafted Processing Instruction PI input, which can lead to...
PT-2022-18975 · Owasp +2 · Owasp Antisamy +4
Name of the Vulnerable Software and Affected Versions: HtmlUnit-Neko versions 2.26 and earlier CyberNeko HTML versions 1.9.22 and earlier OWASP AntiSamy versions 1.6.6 and earlier Description: Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction PI input...
chromium: use-after-free in DOM, fixed in Chrome 38.0.2125.101
Use-after-free vulnerability in the ProcessingInstruction::setXSLStyleSheet function in core/dom/ProcessingInstruction.cpp in the DOM implementation in Blink, as used in Google Chrome before 38.0.2125.101, allows remote attackers to cause a denial of service or possibly have unspecified other...
CVE-2013-2902
Use-after-free vulnerability in the XSLT ProcessingInstruction implementation in Blink, as used in Google Chrome before 29.0.1547.57, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to an applyXSLTransform call involving 1 an HTML...