Vulnerabilities > Improper Encoding or Escaping of Output
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-30 | CVE-2022-30351 | Improper Encoding or Escaping of Output vulnerability in Pdfzorro R20220428 PDFZorro PDFZorro Online r20220428 using TCPDF 6.2.5, despite having workflows claiming to correctly remove redacted information from a supplied PDF file, does not properly sanitize this information in all cases, causing redacted information, including images and text embedded in the PDF file, to be leaked unintentionally. | 7.5 |
| 2023-03-24 | CVE-2022-42948 | Improper Encoding or Escaping of Output vulnerability in Helpsystems Cobalt Strike 4.7.1 Cobalt Strike 4.7.1 fails to properly escape HTML tags when they are displayed on Swing components. | 9.8 |
| 2023-03-16 | CVE-2023-28101 | Improper Encoding or Escaping of Output vulnerability in Flatpak Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. | 4.3 |
| 2023-03-16 | CVE-2023-28486 | Improper Encoding or Escaping of Output vulnerability in multiple products Sudo before 1.9.13 does not escape control characters in log messages. | 5.3 |
| 2023-03-16 | CVE-2023-28487 | Improper Encoding or Escaping of Output vulnerability in multiple products Sudo before 1.9.13 does not escape control characters in sudoreplay output. | 5.3 |
| 2023-03-02 | CVE-2023-26472 | Improper Encoding or Escaping of Output vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 8.8 |
| 2023-02-20 | CVE-2022-48339 | Improper Encoding or Escaping of Output vulnerability in GNU Emacs An issue was discovered in GNU Emacs through 28.2. | 7.8 |
| 2023-02-01 | CVE-2022-45102 | Improper Encoding or Escaping of Output vulnerability in Dell products Dell EMC Data Protection Central, versions 19.1 through 19.7, contains a Host Header Injection vulnerability. | 6.1 |
| 2023-01-13 | CVE-2015-10040 | Improper Encoding or Escaping of Output vulnerability in Gitlearn Project Gitlearn A vulnerability was found in gitlearn. | 6.5 |
| 2023-01-03 | CVE-2022-45143 | Improper Encoding or Escaping of Output vulnerability in Apache Tomcat The JsonErrorReportValve in Apache Tomcat 8.5.83, 9.0.40 to 9.0.68 and 10.1.0-M1 to 10.1.1 did not escape the type, message or description values. | 7.5 |