Lucene search

K

Boostio Security Vulnerabilities

cve
cve

CVE-2019-12184

There is XSS in browser/components/MarkdownPreview.js in BoostIO Boostnote 0.11.15 via a label named flowchart, sequence, gallery, or chart, as demonstrated by a crafted SRC attribute of an IFRAME element, a different vulnerability than...

5.4CVSS

5.1AI Score

0.001EPSS

2019-05-19 07:29 PM
20
cve
cve

CVE-2019-12136

There is XSS in BoostIO Boostnote 0.11.15 via a label named mermaid, as demonstrated by a crafted SRC attribute of an IFRAME...

5.4CVSS

5.1AI Score

0.001EPSS

2019-05-16 03:29 AM
18