Lucene search
K

14 matches found

RedHat Linux
RedHat Linux
added 2026/07/01 6:46 p.m.8 views

golang.org/x/net/html: golang.org/x/net/html: Arbitrary code execution via Cross-Site Scripting

A flaw was found in golang.org/x/net/html. A remote attacker could exploit this vulnerability by providing specially crafted HTML. When this arbitrary HTML is parsed and rendered, it can result in an unexpected HTML tree, bypassing input sanitization. This can be leveraged to execute Cross-Site...

6.1CVSS6.5AI score0.00178EPSS
Exploits0References8
Microsoft CVE
Microsoft CVE
added 2026/05/27 8:11 a.m.27 views

Invoking incorrect handling of character references in DOCTYPE nodes in golang.org/x/net/html

...

6.1CVSS5.8AI score0.00178EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/27 8:9 a.m.16 views

Invoking incorrect handling of HTML elements in foreign content in golang.org/x/net/html

...

6.1CVSS5.8AI score0.00178EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/27 8:6 a.m.15 views

Invoking denial of service when parsing arbitrary HTML in golang.org/x/net/html

...

6.5CVSS5.8AI score0.00248EPSS
Exploits0
OSV
OSV
added 2026/05/22 3:1 p.m.3 views

CVE-2026-25680 Invoking denial of service when parsing arbitrary HTML in golang.org/x/net/html

Parsing arbitrary HTML can consume excessive CPU time, possibly leading to denial of service...

6.5CVSS6AI score0.00248EPSS
Exploits0References7
Amazon
Amazon
added 2026/02/18 12:0 a.m.8 views

Medium: ecs-init

Issue Overview: The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content. CVE-2025-47911 The html.Parse function in golang.org/x/net/html has an...

10CVSS7.2AI score0.01945EPSS
Exploits3
Github Security Blog
Github Security Blog
added 2026/02/12 10:6 p.m.6 views

golang.org/x/net/html has a Quadratic Parsing Complexity issue

The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to Denial of Service DoS if an attacker provides specially crafted HTML content...

5.3CVSS5.3AI score0.00502EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/02/06 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2025-47911

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service DoS if an...

5.3CVSS6.8AI score0.00502EPSS
Exploits0References4
OSV
OSV
added 2026/02/05 6:16 p.m.10 views

AZL-76790 CVE-2025-58190 affecting package azl-otel-collector 0.127.0-1

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

5.3CVSS5.7AI score0.00482EPSS
Exploits1References1
OSV
OSV
added 2026/02/05 6:16 p.m.5 views

AZL-76827 CVE-2025-58190 affecting package cert-manager for versions less than 1.11.2-27

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

5.3CVSS5.7AI score0.00482EPSS
Exploits1References1
OSV
OSV
added 2026/02/05 6:16 p.m.12 views

AZL-77049 CVE-2025-58190 affecting package sriov-network-device-plugin for versions less than 3.6.2-11

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

5.3CVSS6.7AI score0.00482EPSS
Exploits1References1
OSV
OSV
added 2026/02/05 6:16 p.m.10 views

AZL-77000 CVE-2025-58190 affecting package keda 2.14.1-9

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

5.3CVSS5.7AI score0.00482EPSS
Exploits1References1
OSV
OSV
added 2026/02/05 6:16 p.m.8 views

AZL-76889 CVE-2025-58190 affecting package cloud-provider-kubevirt 0.5.1-2

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

5.3CVSS5.7AI score0.00482EPSS
Exploits1References1
OSV
OSV
added 2026/02/05 6:16 p.m.7 views

AZL-76868 CVE-2025-47911 affecting package cert-manager 1.12.15-4

The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

5.3CVSS7.3AI score0.00502EPSS
Exploits0References1
Rows per page
Query Builder