Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
added yesterday2 views

CVE-2026-50135

Hugo is a static site generator. From 0.123.0 to 0.161.1, a regression made RootMappingFs.statRoot use Stat follows symlinks instead of Lstat , so a direct resources.Get of a symlink pointing outside its mount returned the target's contents — letting a symlink planted in a local mount e.g. a...

6.9CVSS5.9AI score0.00024EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-1294

Malware in sbrugna...

8.5CVSS8.4AI score0.01451EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-3458

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.00574EPSS
Exploits0References6
NVD
NVD
added 2024/12/09 10:15 p.m.33 views

CVE-2024-55601

Hugo is a static site generator. Starting in version 0.123.0 and prior to version 0.139.4, some HTML attributes in Markdown in the internal templates listed below not escaped in internal render hooks. Those whoa re impacted are Hugo users who do not trust their Markdown content files and are usin...

5.3CVSS0.00574EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/12/09 9:11 p.m.13 views

CVE-2024-55601

Hugo is a static site generator. Starting in version 0.123.0 and prior to version 0.139.4, some HTML attributes in Markdown in the internal templates listed below not escaped in internal render hooks. Those whoa re impacted are Hugo users who do not trust their Markdown content files and are usin...

5.3CVSS5.8AI score0.00574EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2024/12/09 9:11 p.m.15 views

CVE-2024-55601

Hugo is a static site generator. Starting in version 0.123.0 and prior to version 0.139.4, some HTML attributes in Markdown in the internal templates listed below not escaped in internal render hooks. Those whoa re impacted are Hugo users who do not trust their Markdown content files and are usin...

5.3CVSS6.5AI score0.00574EPSS
Exploits0
Rows per page
Query Builder