CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2 days ago•22 views

CVE-2026-10701 Incorrect boundary conditions in the Graphics: Text component

Incorrect boundary conditions in the Graphics: Text component. This vulnerability was fixed in Firefox 151.0.3...

0.00018EPSS

CVE•added 2 days ago•4 views

CVE-2026-10701

CVE-2026-10701 relates to an Incorrect boundary condition in Firefox’s Graphics: Text component. Connected sources confirm this is addressed by the Firefox 151.0.3 update, fixing the vulnerability. The issue is described as a boundary condition problem within the Graphics: Text component and is i...

7.5CVSS5.8AI score0.00018EPSS

Vulnrichment•added 2 days ago•2 views

CVE-2026-10701 Incorrect boundary conditions in the Graphics: Text component

Incorrect boundary conditions in the Graphics: Text component. This vulnerability was fixed in Firefox 151.0.3...

5.8AI score0.00018EPSS

EUVD•added 2 days ago•5 views

EUVD-2026-33989

Incorrect boundary conditions in the Graphics: Text component. This vulnerability was fixed in Firefox 151.0.3...

5.8AI score0.00018EPSS

Positive Technologies•added 2 days ago•4 views

PT-2026-45822

Incorrect boundary conditions in the Graphics: Text component. This vulnerability was fixed in Firefox 151.0.3...

5.8AI score0.00018EPSS

Exploits0References3

Ubuntu•added 3 days ago•7 views

USN-8357-1: Qt Declarative vulnerability

It was discovered that Qt Declarative did not properly validate the width and height attributes of image tags in the Text component of Qt Quick. An attacker could possibly use this issue to cause Qt Declarative to use excessive resources, leading to a denial of service...

8.7CVSS5.8AI score0.0012EPSS

Exploits0

RedhatCVE•added last week•6 views

CVE-2026-48149

Budibase is an open-source low-code platform. Prior to 3.39.0, the Budibase Text component renders markdown by assigning marked.parsemarkdown straight to innerHTML with no sanitizer packages/bbui/src/Markdown/MarkdownViewer.svelte:22. Any column a builder binds to a Text component in Markdown mod...

ATTACKERKB•added 2026/05/27 4:59 p.m.•3 views

CVE-2026-48149

Exploits0References2Affected Software1

Vulnrichment•added 2026/05/27 4:59 p.m.•2 views

CVE-2026-48149 Budibase: Stored XSS in Text component: BASIC users execute JS in admin session via MarkdownViewer innerHTML + CDN+srcdoc CSP bypass

Cvelist•added 2026/05/27 4:59 p.m.•32 views

CVE-2026-48149 Budibase: Stored XSS in Text component: BASIC users execute JS in admin session via MarkdownViewer innerHTML + CDN+srcdoc CSP bypass

8.1CVSS0.00036EPSS

CVE•added 2026/05/27 4:59 p.m.•6 views

CVE-2026-48149

CVE-2026-48149 affects Budibase prior to version 3.39.0, where the Budibase Text component in Markdown mode rendered markdown by assigning marked.parse(markdown) directly to innerHTML without sanitization (MarkdownViewer.svelte:22). This creates a stored-XSS sink in any column bound to a Text com...

CNNVD•added 2026/05/27 12:0 a.m.•3 views

Budibase 跨站脚本漏洞

Budibase is an open-source platform developed by Budibase in the UK. It allows for the creation of internal applications, workflows, and management panels within minutes. Versions of Budibase prior to 3.39.0 contained a cross-site scripting vulnerability. This vulnerability stemmed from the Text...

8.1CVSS5.6AI score0.00036EPSS

Positive Technologies•added 2026/05/27 12:0 a.m.•4 views

PT-2026-44060

Name of the Vulnerable Software and Affected Versions Budibase versions prior to 3.39.0 Description The Text component in this open-source low-code platform renders markdown by assigning the output of the marked.parsemarkdown function directly to innerHTML without using a sanitizer. This creates ...