Lucene search
K

20 matches found

RedhatCVE
RedhatCVE
added 12 hours ago3 views

CVE-2026-14651

A flaw was found in grass, a Sass compiler. This vulnerability allows a local attacker to cause a Denial of Service DoS by manipulating specific functions within the compiler, such as grasscompiler::selector::extend or grasscompiler::evaluate::visitor. This can lead to the compiler becoming...

4.8CVSS5.8AI score0.00115EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 13 hours ago4 views

CVE-2026-14650

A flaw was found in Grass. A local attacker could exploit a vulnerability in the UTF-8 Character Handler, specifically within the grasscompiler::rawtoparseerror function, by executing a manipulation. This could lead to a denial of service, making the system or application unavailable to legitimat...

4.8CVSS5.8AI score0.00116EPSS
Exploits0References9
NVD
NVD
added 2 days ago5 views

CVE-2026-14651

A vulnerability has been found in connorskees grass up to 0.13.4. The impacted element is the function grasscompiler::selector::extend/grasscompiler::evaluate::visitor. The manipulation leads to denial of service. The attack must be carried out locally. The exploit has been disclosed to the publi...

4.8CVSS0.00115EPSS
Exploits0References6
NVD
NVD
added 2 days ago7 views

CVE-2026-14650

A flaw has been found in connorskees grass up to 0.13.4. The affected element is the function grasscompiler::rawtoparseerror of the component UTF-8 Character Handler. Executing a manipulation can lead to denial of service. The attack is restricted to local execution. The exploit has been publishe...

4.8CVSS0.00116EPSS
Exploits0References6
Cvelist
Cvelist
added 2 days ago22 views

CVE-2026-14651 connorskees grass visitor denial of service

A vulnerability has been found in connorskees grass up to 0.13.4. The impacted element is the function grasscompiler::selector::extend/grasscompiler::evaluate::visitor. The manipulation leads to denial of service. The attack must be carried out locally. The exploit has been disclosed to the publi...

4.8CVSS0.00115EPSS
Exploits0References6
EUVD
EUVD
added 2 days ago6 views

EUVD-2026-41695

A vulnerability has been found in connorskees grass up to 0.13.4. The impacted element is the function grasscompiler::selector::extend/grasscompiler::evaluate::visitor. The manipulation leads to denial of service. The attack must be carried out locally. The exploit has been disclosed to the publi...

4.8CVSS5.1AI score0.00115EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2 days ago5 views

CVE-2026-14651

A vulnerability has been found in connorskees grass up to 0.13.4. The impacted element is the function grasscompiler::selector::extend/grasscompiler::evaluate::visitor. The manipulation leads to denial of service. The attack must be carried out locally. The exploit has been disclosed to the publi...

4.8CVSS5.1AI score0.00115EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2 days ago12 views

CVE-2026-14651

CVE-2026-14651 affects connorskees grass up to 0.13.4. The vulnerable element is grass_compiler::selector::extend and grass_compiler::evaluate::visitor, with a denial-of-service condition triggered by local input. The exploit is public and the description notes that the @extend algorithm can be e...

4.8CVSS5.1AI score0.00115EPSS
Exploits0References6
Cvelist
Cvelist
added 2 days ago25 views

CVE-2026-14650 connorskees grass UTF-8 Character raw_to_parse_error denial of service

A flaw has been found in connorskees grass up to 0.13.4. The affected element is the function grasscompiler::rawtoparseerror of the component UTF-8 Character Handler. Executing a manipulation can lead to denial of service. The attack is restricted to local execution. The exploit has been publishe...

4.8CVSS0.00116EPSS
Exploits0References6
EUVD
EUVD
added 2 days ago9 views

EUVD-2026-41694

A flaw has been found in connorskees grass up to 0.13.4. The affected element is the function grasscompiler::rawtoparseerror of the component UTF-8 Character Handler. Executing a manipulation can lead to denial of service. The attack is restricted to local execution. The exploit has been publishe...

4.8CVSS5.5AI score0.00116EPSS
Exploits0References6
CVE
CVE
added 2 days ago12 views

CVE-2026-14650

Technical details about CVE-2026-14650 are not publicly available in the provided documents. Monitor for updates.

4.8CVSS5.5AI score0.00116EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2 days ago9 views

PT-2026-55731

Name of the Vulnerable Software and Affected Versions connorskees grass versions prior to 0.13.5 Description A local manipulation of the grass compiler::selector::extend/grass compiler::evaluate::visitor function can lead to a denial of service. This occurs because the @extend algorithm is...

4.8CVSS5.9AI score0.00115EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2 days ago7 views

PT-2026-55729

Name of the Vulnerable Software and Affected Versions connorskees grass versions prior to 0.13.5 Description A flaw in the UTF-8 Character Handler component allows local execution of a manipulation that can lead to a denial of service. The issue resides in the grass compiler::raw to parse error...

4.8CVSS6AI score0.00116EPSS
Exploits0References10
EUVD
EUVD
added 2025/11/12 4:47 p.m.1 views

EUVD-2025-148002

Malicious code in tear-grass-rc npm...

6.6AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/07/10 4:7 a.m.18 views

newcastleartificialgrasscompany.co.uk Cross Site Scripting vulnerability OBB-2752564

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
RustSec
RustSec
added 2021/04/07 12:0 p.m.14 views

`sass-rs` has been deprecated

The sass-rs crate is not maintained anymore as libsass is deprecated. Consider using https://github.com/connorskees/grass or https://github.com/kaj/rsass instead. Author's recommendation...

1.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/11/08 11:34 a.m.10 views

grass-shack.net Cross Site Scripting vulnerability OBB-1493431

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
xssed
xssed
added 2012/02/18 12:0 a.m.13 views

Unfixed XSS vulnerability at www.grass-arts.com

Security researcher r14nul, has submitted on 18/02/2012 a cross-site-scripting XSS vulnerability affecting www.grass-arts.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 02/08/2012. It is currently...

6.6AI score
Exploits0References1
securityvulns
securityvulns
added 2005/01/06 12:0 a.m.29 views

Multiple GRASS symbolic link problems

No description provided...

1.5AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2005/01/06 12:0 a.m.20 views

[SA13693] GRASS Multiple Scripts Insecure Temporary File Creation

TITLE: GRASS Multiple Scripts Insecure Temporary File Creation SECUNIA ADVISORY ID: SA13693 VERIFY ADVISORY: http://secunia.com/advisories/13693/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: GRASS 5.7.x http://secunia.com/product/4471/ DESCRIPTION: Javier...

0.6AI score
Exploits0
Rows per page
Query Builder