Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

50 matches found

UbuntuCve
UbuntuCveadded 2017/02/22 4:59 p.m.13 views

CVE-2016-9909

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of the less than character in attribute values...

6.1CVSS6.3AI score0.02141EPSS
Exploits0References5
vulnersOsv
vulnersOsvadded 2017/02/22 4:59 p.m.2 views

mezzanine (>=3.0.0 <=3.0.4) potentially affected by CVE-2016-9909 via html5lib (=0.95.0)

html5lib PYPI version =0.95.0 is affected by a known vulnerability. The following packages have a transitive dependency on html5lib and may be impacted: - mezzanine =3.0.0, =3.0.4 Source cves: CVE-2016-9909 Source advisory: OSV:PYSEC-2017-14...

6.1CVSS6.3AI score0.02141EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2017/02/22 4:59 p.m.2 views

mezzanine (>=3.0.0 <=3.0.4) potentially affected by CVE-2016-9910 via html5lib (=0.95.0)

html5lib PYPI version =0.95.0 is affected by a known vulnerability. The following packages have a transitive dependency on html5lib and may be impacted: - mezzanine =3.0.0, =3.0.4 Source cves: CVE-2016-9910 Source advisory: OSV:PYSEC-2017-15...

6.1CVSS6.3AI score0.02141EPSS
Exploits0
OSV
OSVadded 2017/02/22 4:59 p.m.14 views

PYSEC-2017-15

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of special characters in attribute values, a different vulnerability than CVE-2016-9909...

6.1CVSS4.4AI score0.02141EPSS
Exploits0References8
Prion
Prionadded 2017/02/22 4:59 p.m.9 views

Cross site scripting

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of the less than character in attribute values...

4.3CVSS5.8AI score0.02141EPSS
Exploits0References7Affected Software1
Prion
Prionadded 2017/02/22 4:59 p.m.12 views

Cross site scripting

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of special characters in attribute values, a different vulnerability than CVE-2016-9909...

4.3CVSS5.9AI score0.02141EPSS
Exploits0References7Affected Software1
OSV
OSVadded 2017/02/22 4:59 p.m.1 views

UBUNTU-CVE-2016-9909

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of the less than character in attribute values...

6.1CVSS6.3AI score0.02141EPSS
Exploits0References6
OSV
OSVadded 2017/02/22 4:59 p.m.0 views

UBUNTU-CVE-2016-9910

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of special characters in attribute values, a different vulnerability than CVE-2016-9909...

6.1CVSS6.3AI score0.02141EPSS
Exploits0References4
PyPA
PyPAadded 2017/02/22 4:59 p.m.7 views

PYSEC-2017-15

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of special characters in attribute values, a different vulnerability than CVE-2016-9909...

6.1CVSS6.2AI score0.02141EPSS
Exploits0References8Affected Software1
PyPA
PyPAadded 2017/02/22 4:59 p.m.5 views

PYSEC-2017-14

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of the less than character in attribute values...

6.1CVSS6.1AI score0.02141EPSS
Exploits0References8Affected Software1
OSV
OSVadded 2017/02/22 4:59 p.m.1 views

DEBIAN-CVE-2016-9910

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of special characters in attribute values, a different vulnerability than CVE-2016-9909...

6.1CVSS5.8AI score0.02141EPSS
Exploits0References1
OSV
OSVadded 2017/02/22 4:59 p.m.1 views

DEBIAN-CVE-2016-9909

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of the less than character in attribute values...

6.1CVSS6.1AI score0.02141EPSS
Exploits0References1
OSV
OSVadded 2017/02/22 4:59 p.m.13 views

PYSEC-2017-14

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of the less than character in attribute values...

6.1CVSS5.1AI score0.02141EPSS
Exploits0References8
OSV
OSVadded 2017/02/22 4:59 p.m.12 views

CVE-2016-9910

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of special characters in attribute values, a different vulnerability than CVE-2016-9909...

6.1CVSS5.9AI score
Exploits0References7
OSV
OSVadded 2017/02/22 4:59 p.m.12 views

CVE-2016-9909

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of the less than character in attribute values...

6.1CVSS5.8AI score
Exploits0References7
NVD
NVDadded 2017/02/22 4:59 p.m.13 views

CVE-2016-9910

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of special characters in attribute values, a different vulnerability than CVE-2016-9909...

6.1CVSS5.9AI score0.02141EPSS
Exploits0References7
Cvelist
Cvelistadded 2017/02/22 4:0 p.m.19 views

CVE-2016-9909

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of the less than character in attribute values...

5.8AI score0.02141EPSS
Exploits0References7
Cvelist
Cvelistadded 2017/02/22 4:0 p.m.24 views

CVE-2016-9910

The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting XSS attacks by leveraging mishandling of special characters in attribute values, a different vulnerability than CVE-2016-9909...

5.9AI score0.02141EPSS
Exploits0References7
CVE
CVEadded 2017/02/22 4:0 p.m.67 views

CVE-2016-9910

CVE-2016-9910 affects the html5lib serializer prior to 0.99999999 and enables cross-site scripting (XSS) through mishandling of special characters in attribute values, a distinct issue from CVE-2016-9909. The connected documents confirm this is a separate vulnerability entry without additional ex...

6.1CVSS5.8AI score0.02141EPSS
Exploits0References7Affected Software1
CVE
CVEadded 2017/02/22 4:0 p.m.81 views

CVE-2016-9909

CVE-2016-9909 affects the html5lib serializer prior to 0.99999999. The vulnerability arises from improper handling of the

6.1CVSS5.7AI score0.02141EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder