CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/06/12 8:39 p.m.•29 views

CVE-2026-44990 Apostrophe has default XSS via `xmp` raw-text passthrough in `sanitize-html`

9.3CVSS0.00323EPSS

EUVD•added 2026/06/12 8:39 p.m.•8 views

EUVD-2026-36566

9.3CVSS5.2AI score0.00323EPSS

Mageia•added 2026/06/10 5:7 a.m.•8 views

Updated libxmp packages fix security vulnerabilities

CVE-2023-45679: Attempt to free an uninitialized memory pointer in vorbisdeinit CVE-2023-45680: Null pointer dereference in vorbisdeinit CVE-2023-45681: Out of bounds heap buffer write CVE-2023-45676: Multi-byte write heap buffer overflow in startdecoder CVE-2023-45677: Heap buffer out of bounds...

7.8CVSS7AI score0.0056EPSS

Exploits1References3

RedhatCVE•added 2026/06/05 7:26 p.m.•8 views

CVE-2026-40260

pypdf is a free and open-source pure-python PDF library. In versions prior to 6.10.0, manipulated XMP metadata entity declarations can exhaust RAM. An attacker who exploits this vulnerability can craft a PDF which leads to large memory usage. This requires parsing the XMP metadata. This issue has...

6.9CVSS5.3AI score0.00423EPSS

Tenable Nessus•added 2026/05/29 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2026-48735

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pypdf is a free and open-source pure-python PDF library. Prior to 6.12.1, an attacker who uses this vulnerability can craft a PDF which leads to large memory...

OSV•added 2026/05/28 4:16 p.m.•7 views

Exploits0References3

UBUNTU-CVE-2026-48735

pypdf is a free and open-source pure-python PDF library. Prior to 6.12.1, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing large XMP metadata, possibly with lots of unnecessary elements. This vulnerability is fixed in 6.12.1...

ATTACKERKB•added 2026/05/28 2:49 p.m.•7 views

Exploits0References5

CVE-2026-48735

Exploits0References4Affected Software1

Vulnrichment•added 2026/05/28 2:49 p.m.•6 views

CVE-2026-48735 pypdf: Manipulated XMP metadata streams can exhaust RAM

CVE•added 2026/05/28 2:49 p.m.•30 views

Exploits0References3

CVE-2026-48735

The CVE affects the Python PDF library pypdf prior to version 6.12.1, where parsing large XMP metadata can cause excessive memory usage. Root cause is processing crafted or verbose XMP metadata that expands memory footprint. Impact stated: high impact on availability due to memory exhaustion; con...

Exploits0References3Affected Software1

Cvelist•added 2026/05/28 2:49 p.m.•34 views

CVE-2026-48735 pypdf: Manipulated XMP metadata streams can exhaust RAM

6.9CVSS0.00129EPSS

Exploits0References3

Debian CVE•added 2026/05/28 2:49 p.m.•8 views

CVE-2026-48735

AstraLinux•added 2026/05/20 5:53 a.m.•6 views

Exploits0

Astra Linux - уязвимость в exempi

The XMP Toolkit SDK version 2020.1 and earlier is affected by a buffer overflow vulnerability that may lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction, as the victim must open a specially crafted file...

9.3CVSS7.8AI score0.05025EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в exempi

The XMP Toolkit SDK version 2021.07 and earlier is affected by a stack-based buffer overflow vulnerability that may lead to arbitrary code execution within the context of the current user. Exploitation requires user interaction—that is, the victim must open a specially crafted file...

9.3CVSS7.9AI score0.03559EPSS

Snyk•added 2026/05/14 6:26 p.m.•18 views

Cross-site Scripting (XSS)

Overview sanitize-html is a library that allows you to clean up user-submitted HTML, preserving whitelisted elements and whitelisted attributes on a per-element basis Affected versions of this package are vulnerable to Cross-site Scripting XSS via the xmp raw-text passthrough. An attacker can...

6.1CVSS5.8AI score0.00323EPSS

Github Security Blog•added 2026/05/14 6:26 p.m.•30 views

Apostrophe has default XSS via `xmp` raw-text passthrough in `sanitize-html`

Summary Under the default configuration, sanitize-html can turn attacker-controlled content inside a disallowed xmp element into live HTML or JavaScript. This is a sanitizer bypass in the default disallowedTagsMode: 'discard' path and can lead to stored XSS in applications that render sanitized...

9.3CVSS6AI score0.00323EPSS

Exploits0References5Affected Software1

OSV•added 2026/05/14 6:26 p.m.•4 views

GHSA-RPR9-RXV7-X643 Apostrophe has default XSS via `xmp` raw-text passthrough in `sanitize-html`

9.3CVSS6AI score0.00323EPSS

Exploits0References5

Snyk•added 2026/05/14 6:26 p.m.•8 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the xmp raw-text passthrough. An attacker can execute arbitrary JavaScript in the browser of another user by submitting specially crafted HTML content that is sanitized and then rendered as trusted output...

9.3CVSS5.8AI score0.00323EPSS

Positive Technologies•added 2026/05/14 12:0 a.m.•9 views

PT-2026-41152

Name of the Vulnerable Software and Affected Versions sanitize-html version 2.17.3 Description A sanitizer bypass exists in the default configuration where the disallowedTagsMode: 'discard' path fails to properly handle the xmp element. Because xmp is not included in the nonTextTags list, its...

9.3CVSS5.7AI score0.00323EPSS

Exploits0References9

AstraLinux•added 2026/05/03 11:59 p.m.•6 views

Astra Linux – Vulnerability in exempi

The XMP Toolkit version 2020.1 and earlier versions is affected by a Buffer Underflow vulnerability, which could lead to the execution of arbitrary code in the context of the current user. Exploiting this issue requires user interaction, as the victim must open a malicious file...

9.3CVSS7.8AI score0.02527EPSS