Lucene search
K

9 matches found

OSV
OSV
added 2026/05/04 6:16 p.m.4 views

DEBIAN-CVE-2026-42052

Beets is the media library management system. Prior to version 2.10.0, the bundled web UI uses Underscore template interpolation mode for untrusted metadata fields. In this runtime, is raw insertion and HTML escaping is only performed by . Rendered output is then inserted with .html..., allowing...

6CVSS5.7AI score0.003EPSS
Exploits0References1
CVE
CVE
added 2026/04/09 4:54 p.m.29 views

CVE-2026-39980

OpenCTI prior to 6.9.5 has a vulnerability in safeEjs.ts where EJS templates are not properly sanitized, allowing users with Manage customization capability to run arbitrary JavaScript in the platform process context during notifier template execution. The issue is fixed in 6.9.5; CVSS 3.1 base s...

9.1CVSS6AI score0.00522EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/03/20 8:22 p.m.8 views

CVE-2026-33154

dynaconf is a configuration management tool for Python. Prior to version 3.2.13, Dynaconf is vulnerable to Server-Side Template Injection SSTI due to unsafe template evaluation in the @Jinja resolver. When the jinja2 package is installed, Dynaconf evaluates template expressions embedded in...

8.1CVSS5.3AI score0.00526EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2026/03/05 6:40 p.m.7 views

CVE-2026-26195

Gogs is an open source self-hosted Git service. Prior to version 0.14.2, stored xss is still possible through unsafe template rendering that mixes user input with safe plus permissive sanitizer handling of data urls. This issue has been patched in version 0.14.2...

6.9CVSS5.8AI score0.00189EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2026/01/21 11:15 p.m.12 views

CVE-2026-23986

Copier is a library and CLI app for rendering project templates. Prior to version 9.11.2, Copier suggests that it's safe to generate a project from a safe template, i.e. one that doesn't use unsafe features like custom Jinja extensions which would require passing the --UNSAFE,--trust flag. As it...

7.1CVSS0.00224EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/01/21 10:20 p.m.4 views

CVE-2026-23986

Copier is a library and CLI app for rendering project templates. Prior to version 9.11.2, Copier suggests that it's safe to generate a project from a safe template, i.e. one that doesn't use unsafe features like custom Jinja extensions which would require passing the --UNSAFE,--trust flag. As it...

7.1CVSS5.5AI score0.00224EPSS
Exploits1References4Affected Software1
RedHat Linux
RedHat Linux
added 2023/05/25 7:58 a.m.5 views

golang: html/template: improper handling of JavaScript whitespace

A flaw was found in golang, where not all valid JavaScript white-space characters were considered white space. Due to this issue, templates containing white-space characters outside of the character set "\t\n\f\r\u0020\u2028\u2029" in JavaScript contexts that also contain actions may not be...

9.8CVSS6.5AI score0.01548EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/03/20 9:15 a.m.5 views

nodejs-handlebars: lookup helper fails to properly validate templates allowing for arbitrary JavaScript execution

A flaw was found in nodejs-handlebars, where affected versions of handlebars are vulnerable to arbitrary code execution. The package lookup helper fails to properly validate templates, allowing attackers to submit templates that execute arbitrary JavaScript into the system. This issue is used to...

8.1CVSS7.7AI score0.03193EPSS
Exploits1References6
OSV
OSV
added 2022/02/10 8:38 p.m.3 views

GHSA-3CQR-58RM-57F8 Arbitrary Code Execution in Handlebars

Handlebars before 3.0.8 and 4.x before 4.5.3 is vulnerable to Arbitrary Code Execution. The lookup helper fails to properly validate templates, allowing attackers to submit templates that execute arbitrary JavaScript. This can be used to run arbitrary code on a server processing Handlebars...

8.1CVSS7.5AI score0.03193EPSS
Exploits1References7
Rows per page
Query Builder