EUVD-2010-1240

Malware in sbrugna...

EUVD-2024-22931

Malicious code in bioql PyPI...

CVE-2023-31441

In NATO Communications and Information Agency anet aka Advisor Network through 3.3.0, an attacker can provide a crafted JSON file to sanitizeJson and cause an exception. This is related to the U+FFFD Unicode replacement character. A for loop does not consider that a data structure is being modifi...

CVE-2023-31441

In NATO Communications and Information Agency anet aka Advisor Network through 3.3.0, an attacker can provide a crafted JSON file to sanitizeJson and cause an exception. This is related to the U+FFFD Unicode replacement character. A for loop does not consider that a data structure is being modifi...

CVE-2023-31441

CVE-2023-31441 affects NATO Communications and Information Agency anet (aka Advisor Network) up to version 3.3.0. A crafted JSON file fed to the sanitizeJson function can trigger an exception due to a data-structure modification during iteration, related to the U+FFFD Unicode replacement characte...

Mozilla Firefox字符映射错误显示漏洞

BUGTRAQ ID: 41866 CVE ID: CVE-2010-1210 Firefox是一款流行的开源WEB浏览器。 一些8位编码包含有未定义的位置，映射到了U+FFFD。在显示的时候，可能不会显示紧随之后的字符。例如，windows-1253中的 '\xD1', '\xD2', '\xD3', 'xD4'序列应为U+3A1, U+FFFD, U+3A3, U+3A4（也就是字符串ΡΣΤ），但实际结果为U+3A1, U+FFFD, U+3A4，缺少了U+3A3字符（也就是ΡΤ字符串，缺少Σ）。 在某些站点上这可能导致跨站脚本问题，因为服务器上过滤掉了某些应显示的字符。 Mozil...

Characters mapped to U+FFFD in 8 bit encodings cause subsequent character to vanish — Mozilla

Security researcher O. Andersen reported that undefined positions within various 8 bit character encodings are mapped to the sequence U+FFFD which when displayed causes the immediately following character to disappear from the text run. This could potentially contribute to XSS problems on sites...