CVE-2026-23959

creationtimestamp| type| source ---|---|--- 2026-01-20 07:34:19+00:00| published-proof-of-concept| https://github.com/coreshop/CoreShop/security/advisories/GHSA-fqcv-8859-86x2...

MiracleLinux 7 : rh-varnish6-varnish-6.0.8-2.el7.1 (AXSA:2022-3192:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3192:01 advisory. varnish: HTTP/1 request smuggling vulnerability CVE-2022-23959 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 8 : varnish:6 (AXSA:2022-3053:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3053:01 advisory. varnish: HTTP/1 request smuggling vulnerability CVE-2022-23959 Tenable has extracted the preceding description block directly from the MiracleLinux security...

EUVD-2020-23959

Malware in sbrugna...

EUVD-2025-23959

Malicious code in bioql PyPI...

TencentOS Server 3: varnish:6 (TSSA-2022:0024)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0024 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

CVE-2025-23959

creationtimestamp| type| source ---|---|--- 2025-01-22 15:21:53+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgdoatypav2e 2025-01-22 15:49:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lgdpsq3b6e2w 2025-01-22 17:13:35+00:00| seen|...

CVE-2025-23959

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Linus Lundahl Good Old Gallery good-old-gallery allows Reflected XSS.This issue affects Good Old Gallery: from n/a through = 2.1.2...

CVE-2025-23959 WordPress Good Old Gallery Plugin <= 2.1.2 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Linus Lundahl Good Old Gallery good-old-gallery allows Reflected XSS.This issue affects Good Old Gallery: from n/a through = 2.1.2...

CVE-2025-23959

CVE-2025-23959 describes a Reflected XSS in Good Old Gallery (Linus Lundahl). The vulnerability results from improper input neutralization during web page generation and affects Good Old Gallery versions from n/a up to 2.1.2. The connected Red Hat advisory confirms the same description; no public...

Fedora 36 : varnish (2022-d77f991ed2)

The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-d77f991ed2 advisory. Automatic update for varnish-7.0.2-1.fc36. Changelog Wed Jan 26 2022 Ingvar Hagelund - 7.0.2-1 - New upstream release. A security release - Includes fix for...

CVE-2024-23959

creationtimestamp| type| source ---|---|--- 2024-09-10 16:39:28+00:00| seen| https://t.me/itsecnews/4688 2024-09-28 10:18:13+00:00| seen| https://t.me/cvedetector/6599...

SUSE CVE-2021-23959

An XSS bug in internal error pages could have led to various spoofing attacks, including other error pages and the address bar. Note: This issue only affected Firefox for Android. Other operating systems are unaffected. This vulnerability affects Firefox 85...

Important: varnish

Issue Overview: A flaw was found in Varnish. This flaw allows an attacker to carry out a request smuggling attack on HTTP/1 connections on Varnish cache servers. This smuggled request goes through the usual Varnish Configuration Language VCL processing since the Varnish server treats it as an...

openSUSE 15 Security Update : varnish (openSUSE-SU-2022:0148-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0148-1 advisory. - Varnish Cache, with HTTP/2 enabled, allows request smuggling and VCL authorization bypass via a large Content-Length header for a POST...

RHEL 7 : rh-varnish6-varnish (RHSA-2022:4745)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:4745 advisory. Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and ov...

Important: Red Hat Security Advisory: rh-varnish6-varnish security update

An update for rh-varnish6-varnish is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

AlmaLinux 8 : varnish:6 (ALSA-2022:0418)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:0418 advisory. varnish: HTTP/1 request smuggling vulnerability CVE-2022-23959 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory...

Debian: Security Advisory (DSA-5088-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-5088-1 : varnish - security update

The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5088 advisory. - Varnish Cache, with HTTP/2 enabled, allows request smuggling and VCL authorization bypass via a large Content-Length header for a POST request. This affect...