Lucene search
K

11 matches found

OSV
OSV
added 2026/03/24 8:16 p.m.4 views

UBUNTU-CVE-2026-33347

league/commonmark is a PHP Markdown parser. From version 2.3.0 to before version 2.8.2, the DomainFilteringAdapter in the Embed extension is vulnerable to an allowlist bypass due to a missing hostname boundary assertion in the domain-matching regex. An attacker-controlled domain like...

6.3CVSS5.8AI score0.00241EPSS
Exploits0References6
OSV
OSV
added 2026/03/24 7:26 p.m.4 views

CVE-2026-33347 league/commonmark has an embed extension allowed_domains bypass

league/commonmark is a PHP Markdown parser. From version 2.3.0 to before version 2.8.2, the DomainFilteringAdapter in the Embed extension is vulnerable to an allowlist bypass due to a missing hostname boundary assertion in the domain-matching regex. An attacker-controlled domain like...

6.3CVSS5.8AI score0.00241EPSS
Exploits0References5
vulnersOsv
vulnersOsv
added 2025/06/19 12:30 p.m.7 views

org.apache.seatunnel:connector-console-seatunnel-e2e (>=2.3.0 <=2.3.10), org.apache.seatunnel:connector-seatunnel-e2e-base (>=2.3.0 <=2.3.10) +2 more potentially affected by CVE-2025-32896 via org.apache.seatunnel:seatunnel-engine-server (>=2.3.0 <=2.3.10)

org.apache.seatunnel:seatunnel-engine-server MAVEN version =2.3.0, =2.3.0, =2.3.0, =2.3.0, =2.3.10 - org.apache.seatunnel:seatunnel-engine-k8s-e2e =2.3.10 Source cves: CVE-2025-32896 Source advisory: SNYK:JAVA-ORGAPACHESEATUNNEL-10442152...

6.5CVSS7.4AI score0.01063EPSS
Exploits0
CNNVD
CNNVD
added 2023/01/26 12:0 a.m.20 views

Jenkins Plugin Keycloak Authentication 跨站请求伪造漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

6.5CVSS6.5AI score0.01EPSS
Exploits0References2
OSV
OSV
added 2022/05/24 5:3 p.m.2 views

GHSA-7H24-4X4C-69MF Improper Authorization in Jenkins Alauda Kubernetes Suport Plugin

A missing permission check in Jenkins Alauda Kubernetes Suport Plugin 2.3.0 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing the Kubernetes service account token or...

6.5CVSS5.9AI score0.00852EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2021/05/21 2:26 p.m.5 views

accuinsight (>=1.0.62 <=3.0.0rc2), adapt-diagnostics (>=1.2.0 <=1.6.0) +110 more potentially affected by CVE-2021-29583 via tensorflow (>=2.3.0 <=2.3.2)

tensorflow PYPI version =2.3.0, =1.0.62, =1.2.0, =0.1.0, =0.0.1a0, =0.0.1, =1.0.0rc1, =20210206.0.0, =0.1.0.dev1, =0.2.4, =1.0.1.0, =1.0.3 - cardec-cite =1.1.0 and more Source cves: CVE-2021-29583 Source advisory: OSV:GHSA-9XH4-23Q4-V6WR...

7.8CVSS7.2AI score0.00211EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/21 2:21 p.m.6 views

deep-floorplan (=0.0.0), mpunet (=0.2.9) +1 more potentially affected by CVE-2021-29523 via tensorflow-gpu (>=2.3.0 <=2.3.2)

tensorflow-gpu PYPI version =2.3.0, =1.1.0, =1.6.1 Source cves: CVE-2021-29523 Source advisory: OSV:GHSA-2CPX-427X-Q2C6...

5.5CVSS6AI score0.00189EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/14 8:15 p.m.5 views

accuinsight (>=1.0.62 <=3.0.0rc2), adapt-diagnostics (>=1.2.0 <=1.6.0) +110 more potentially affected by CVE-2021-29595 via tensorflow (>=2.3.0 <=2.3.2)

tensorflow PYPI version =2.3.0, =1.0.62, =1.2.0, =0.1.0, =0.0.1a0, =0.0.1, =1.0.0rc1, =20210206.0.0, =0.1.0.dev1, =0.2.4, =1.0.1.0, =1.0.3 - cardec-cite =1.1.0 and more Source cves: CVE-2021-29595 Source advisory: OSV:PYSEC-2021-232...

7.8CVSS7.2AI score0.00201EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/14 8:15 p.m.5 views

accuinsight (>=1.0.62 <=3.0.0rc2), adapt-diagnostics (>=1.2.0 <=1.6.0) +110 more potentially affected by CVE-2021-29561 via tensorflow (>=2.3.0 <=2.3.2)

tensorflow PYPI version =2.3.0, =1.0.62, =1.2.0, =0.1.0, =0.0.1a0, =0.0.1, =1.0.0rc1, =20210206.0.0, =0.1.0.dev1, =0.2.4, =1.0.1.0, =1.0.3 - cardec-cite =1.1.0 and more Source cves: CVE-2021-29561 Source advisory: OSV:PYSEC-2021-198...

5.5CVSS5.9AI score0.00189EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/14 8:15 p.m.8 views

accuinsight (>=1.0.62 <=3.0.0rc2), adapt-diagnostics (>=1.2.0 <=1.6.0) +110 more potentially affected by CVE-2021-29523 via tensorflow (>=2.3.0 <=2.3.2)

tensorflow PYPI version =2.3.0, =1.0.62, =1.2.0, =0.1.0, =0.0.1a0, =0.0.1, =1.0.0rc1, =20210206.0.0, =0.1.0.dev1, =0.2.4, =1.0.1.0, =1.0.3 - cardec-cite =1.1.0 and more Source cves: CVE-2021-29523 Source advisory: OSV:PYSEC-2021-160...

5.5CVSS5.9AI score0.00189EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/14 8:15 p.m.4 views

accuinsight (>=1.0.62 <=3.0.0rc2), adapt-diagnostics (>=1.2.0 <=1.6.0) +110 more potentially affected by CVE-2021-29549 via tensorflow (>=2.3.0 <=2.3.2)

tensorflow PYPI version =2.3.0, =1.0.62, =1.2.0, =0.1.0, =0.0.1a0, =0.0.1, =1.0.0rc1, =20210206.0.0, =0.1.0.dev1, =0.2.4, =1.0.1.0, =1.0.3 - cardec-cite =1.1.0 and more Source cves: CVE-2021-29549 Source advisory: OSV:PYSEC-2021-186...

5.5CVSS5.9AI score0.00189EPSS
Exploits1
Rows per page
Query Builder