CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

RedhatCVE•added 2026/01/07 9:27 a.m.•5 views

CVE-2019-12043

In remarkable 1.7.1, lib/parserinline.js mishandles URL filtering, which allows attackers to trigger XSS via unprintable characters, as demonstrated by a \x0ejavascript: URL...

6.1CVSS5.7AI score0.00865EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-0446

Malware in sbrugna...

6.1CVSS6.2AI score0.00865EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2000-0862

Malware in sbrugna...

5CVSS6.4AI score0.01657EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2005-2627

Malware in sbrugna...

10CVSS6.1AI score0.03678EPSS

Exploits0References14

Veracode•added 2020/01/24 5:46 a.m.•18 views

Denial Of Service (DoS)

libyang.so is vulnerable to denial of service DoS. The library do not restrict the input of unprintable characters at the end of the file, causing SIGSEGV signals in yanglint and yangfuzz and crashing the application...

6.5CVSS4.6AI score0.01818EPSS

Exploits1References5Affected Software2

Github Security Blog•added 2019/05/29 6:4 p.m.•33 views

Cross-site Scripting in remarkable

In remarkable 1.7.1, lib/parserinline.js mishandles URL filtering, which allows attackers to trigger XSS via unprintable characters, as demonstrated by a \x0ejavascript: URL...

6.1CVSS5.8AI score0.00865EPSS

Exploits1References4Affected Software1

OSV•added 2019/05/29 6:4 p.m.•1 views

GHSA-36M4-6V6M-4VPR Cross-site Scripting in remarkable

In remarkable 1.7.1, lib/parserinline.js mishandles URL filtering, which allows attackers to trigger XSS via unprintable characters, as demonstrated by a \x0ejavascript: URL...

6.1CVSS5.9AI score0.00865EPSS

Exploits1References3

Veracode•added 2019/05/14 1:39 p.m.•12 views

Cross-Site Scripting (XSS)

remarkable is vulnerable to cross-site scripting XSS attacks. Attackers can bypass the URL validation via unprintable characters which will allow a malicious user to inject and excecute arbitary Javascript in a victim's browser...

6.1CVSS5.7AI score0.00865EPSS

Exploits1References2Affected Software1

NVD•added 2019/05/13 2:29 p.m.•11 views

CVE-2019-12043

In remarkable 1.7.1, lib/parserinline.js mishandles URL filtering, which allows attackers to trigger XSS via unprintable characters, as demonstrated by a \x0ejavascript: URL...

6.1CVSS6AI score0.00865EPSS

Exploits1References1

Prion•added 2019/05/13 2:29 p.m.•9 views

Design/Logic Flaw

In remarkable 1.7.1, lib/parserinline.js mishandles URL filtering, which allows attackers to trigger XSS via unprintable characters, as demonstrated by a \x0ejavascript: URL...

4.3CVSS5.9AI score0.00865EPSS

Exploits1References1Affected Software1

Cvelist•added 2019/05/13 1:5 p.m.•15 views

CVE-2019-12043

In remarkable 1.7.1, lib/parserinline.js mishandles URL filtering, which allows attackers to trigger XSS via unprintable characters, as demonstrated by a \x0ejavascript: URL...

6AI score0.00865EPSS

Exploits1References1

Prion•added 2009/04/17 2:30 p.m.•14 views

Code injection

Microsoft Internet Explorer 7 and 8 on Windows XP and Vista allows remote attackers to cause a denial of service application hang via a large document composed of unprintable characters, aka MSRC 9011jr...

4.3CVSS7AI score0.15668EPSS

Exploits0References4Affected Software1

NVD•added 2009/04/17 2:30 p.m.•19 views

CVE-2009-1335

4.3CVSS6.5AI score0.15668EPSS

Exploits0References4

Cvelist•added 2009/04/17 2:0 p.m.•24 views

CVE-2009-1335

6.5AI score0.15668EPSS

Exploits0References4

Debian•added 2005/08/29 1:48 p.m.•18 views

[SECURITY] [DSA 788-1] New kismet packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 788-1 [email protected] http://www.debian.org/security/ Martin Schulze August 29th, 2005 http://www.debian.org/security/faq -...

7.3AI score

Exploits0

CVE•added 2005/08/19 4:0 a.m.•55 views

CVE-2005-2626

Kismet (before 2005-08-R1) is affected by CVE-2005-2626 and CVE-2005-2627 for insecure handling of unprintable SSID characters and multiple integer underflows that could allow remote code execution. Public advisories (Debian DSA-788-1, GLSA 200508-10, Debian DSAs) document remote exploitation vec...

10CVSS6.4AI score0.03678EPSS

Exploits0References11Affected Software1