Vulnerabilities > Remarkable Project

DATE	CVE	VULNERABILITY TITLE	RISK
2019-05-13	CVE-2019-12043	Cross-site Scripting vulnerability in Remarkable Project Remarkable 1.7.1 In remarkable 1.7.1, lib/parser_inline.js mishandles URL filtering, which allows attackers to trigger XSS via unprintable characters, as demonstrated by a \x0ejavascript: URL. network low complexity remarkable-project CWE-79	6.1
2019-05-13	CVE-2019-12041	Unspecified vulnerability in Remarkable Project Remarkable 1.7.1 lib/common/html_re.js in remarkable 1.7.1 allows Regular Expression Denial of Service (ReDoS) via a CDATA section. network low complexity remarkable-project	7.5
2018-06-04	CVE-2017-16006	Cross-site Scripting vulnerability in Remarkable Project Remarkable Remarkable is a markdown parser. network low complexity remarkable-project CWE-79	6.1
2018-05-31	CVE-2014-10065	Cross-site Scripting vulnerability in Remarkable Project Remarkable Certain input when passed into remarkable before 1.4.1 will bypass the bad protocol check that disallows the javascript: scheme allowing for javascript: url's to be injected into the rendered content. network low complexity remarkable-project CWE-79	6.1

Vulnerabilities > Remarkable Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Remarkable Project"}]}