Lucene search
K

8 matches found

SUSE CVE
SUSE CVE
added 2026/01/06 12:24 a.m.10 views

SUSE CVE-2025-66565

Fiber Utils is a collection of common functions created for Fiber. In versions 2.0.0-rc.3 and below, when the system's cryptographic random number generator crypto/rand fails, both functions silently fall back to returning predictable UUID values, including the zero UUID...

9.8CVSS6.9AI score0.00402EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/10 2:32 a.m.7 views

CVE-2025-66565

Fiber Utils is a collection of common functions created for Fiber. In versions 2.0.0-rc.3 and below, when the system's cryptographic random number generator crypto/rand fails, both functions silently fall back to returning predictable UUID values, including the zero UUID...

9.8CVSS6.6AI score0.00402EPSS
Exploits0References1
CVE
CVE
added 2025/12/09 1:47 a.m.22 views

CVE-2025-66565

Fiber Utils (github.com/gofiber/utils) has a vulnerability in UUIDv4() and UUID() where crypto/rand.Read() failures trigger silent fallbacks to predictable UUID values, including the zero UUID 00000000-0000-0000-0000-000000000000. This root cause affects versions up to 2.0.0-rc.3; the issue is fi...

9.8CVSS6.4AI score0.00402EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-49761

Name of the Vulnerable Software and Affected Versions Fiber Utils versions 2.0.0-rc.3 and below Description Fiber Utils is a collection of functions for Fiber. In versions 2.0.0-rc.3 and below, if the system’s cryptographic random number generator crypto/rand fails, the software silently reverts ...

9.8CVSS6.5AI score0.00402EPSS
Exploits0References8
Cvelist
Cvelist
added 2022/12/06 5:58 p.m.33 views

CVE-2022-23466 DOM-based cross-site scripting (XSS) in teler dashboard

teler is an real-time intrusion detection and threat alert dashboard. teler prior to version 2.0.0-rc.4 is vulnerable to DOM-based cross-site scripting XSS in the teler dashboard. When teler requests messages from the event stream on the /events endpoint, the log data displayed on the dashboard a...

5.4CVSS5.4AI score0.00384EPSS
Exploits0References2
OSV
OSV
added 2022/12/06 5:58 p.m.30 views

CVE-2022-23466 DOM-based cross-site scripting (XSS) in teler dashboard

teler is an real-time intrusion detection and threat alert dashboard. teler prior to version 2.0.0-rc.4 is vulnerable to DOM-based cross-site scripting XSS in the teler dashboard. When teler requests messages from the event stream on the /events endpoint, the log data displayed on the dashboard a...

5.4CVSS5AI score0.00384EPSS
Exploits0References4
OSV
OSV
added 2022/12/06 3:36 p.m.22 views

GHSA-XR7P-8Q82-878Q teler dashboard vulnerable to DOM-based cross-site scripting (XSS)

Description teler prior to version = 2.0.0-rc.4 is vulnerable to DOM-based cross-site scripting XSS in the teler dashboard. When teler requests messages from the event stream on the /events endpoint, the log data displayed on the dashboard are not sanitized. Impact This only affects authenticated...

3.1CVSS5AI score0.00384EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/12/06 12:0 a.m.4 views

Kitabisa Teler 跨站脚本漏洞

Kitabisa Teler is a software from the Kitabisa team for implementing intrusion detection and threat alerts based on web logs. A cross-site scripting vulnerability exists in versions prior to Kitabisa Teler 2.0.0-rc.4, which stems from the fact that log data displayed on the dashboard is not clean...

5.4CVSS5.3AI score0.00384EPSS
Exploits0References3
Rows per page
Query Builder