Vulnerabilities > Improper Encoding or Escaping of Output
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-16 | CVE-2023-28486 | Improper Encoding or Escaping of Output vulnerability in multiple products Sudo before 1.9.13 does not escape control characters in log messages. | 5.3 |
| 2023-03-16 | CVE-2023-28487 | Improper Encoding or Escaping of Output vulnerability in multiple products Sudo before 1.9.13 does not escape control characters in sudoreplay output. | 5.3 |
| 2023-03-02 | CVE-2023-26472 | Improper Encoding or Escaping of Output vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 8.8 |
| 2023-02-20 | CVE-2022-48339 | Improper Encoding or Escaping of Output vulnerability in GNU Emacs An issue was discovered in GNU Emacs through 28.2. | 7.8 |
| 2023-02-01 | CVE-2022-45102 | Improper Encoding or Escaping of Output vulnerability in Dell products Dell EMC Data Protection Central, versions 19.1 through 19.7, contains a Host Header Injection vulnerability. | 6.1 |
| 2023-01-13 | CVE-2015-10040 | Improper Encoding or Escaping of Output vulnerability in Gitlearn Project Gitlearn A vulnerability was found in gitlearn. | 6.5 |
| 2023-01-02 | CVE-2015-10011 | Improper Encoding or Escaping of Output vulnerability in Cisco Openresolve A vulnerability classified as problematic has been found in OpenDNS OpenResolve. | 9.8 |
| 2022-12-27 | CVE-2020-36567 | Improper Encoding or Escaping of Output vulnerability in Gin-Gonic GIN Unsanitized input in the default logger in github.com/gin-gonic/gin before v1.6.0 allows remote attackers to inject arbitrary log lines. | 7.5 |
| 2022-12-22 | CVE-2022-22744 | Improper Encoding or Escaping of Output vulnerability in Mozilla Firefox The constructed curl command from the "Copy as curl" feature in DevTools was not properly escaped for PowerShell. | 8.8 |
| 2022-12-19 | CVE-2022-43883 | Improper Encoding or Escaping of Output vulnerability in IBM Cognos Analytics IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could be vulnerable to a Log Injection attack by constructing URLs from user-controlled data. | 7.5 |