Lucene search

CVE-2023-26046

🗓️ 02 Mar 2023 01:11:15Reported by [email protected]Type

teler-waf vulnerability allows bypassing attack rules to execute arbitrary JavaScript

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
OSV	teler-waf subject to Bypass of Common Web Attack Threat Rule with HTML Entities Payload	1 Mar 202319:19	–	osv
OSV	CVE-2023-26046	2 Mar 202301:15	–	osv
OSV	Cross site scripting in github.com/kitabisa/teler-waf	2 Mar 202300:34	–	osv
Prion	Cross site scripting	2 Mar 202301:15	–	prion
Cvelist	CVE-2023-26046 teler-waf subject to bypass of common web attack threat rule with HTML entities payload	2 Mar 202300:14	–	cvelist
CVE	CVE-2023-26046	2 Mar 202301:15	–	cve
Vulnrichment	CVE-2023-26046 teler-waf subject to bypass of common web attack threat rule with HTML entities payload	2 Mar 202300:14	–	vulnrichment
Veracode	Cross-site Scripting (XSS)	3 Mar 202310:06	–	veracode
Github Security Blog	teler-waf subject to Bypass of Common Web Attack Threat Rule with HTML Entities Payload	1 Mar 202319:19	–	github

Nvd

Node

kitabisa teler-wafRange<0.1.1

Source	Link
github	www.github.com/kitabisa/teler-waf/commit/d1d49cfddfa3ec2adad962870f14b85cd1aaf739
github	www.github.com/kitabisa/teler-waf/releases/tag/v0.1.1
github	www.github.com/kitabisa/teler-waf/security/advisories/GHSA-9f95-hhg4-pg4f

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 Mar 2023 01:15Current

6.4Medium risk

Vulners AI Score6.4

CVSS36.1

EPSS0.00255