CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OpenVAS•added 2025/10/02 12:0 a.m.•4 views

Fedora: Security Advisory (FEDORA-2025-7ec84ba6e9)

6.8AI score

OpenVAS•added 2025/10/02 12:0 a.m.•1 views

Fedora: Security Advisory (FEDORA-2025-1be5992b52)

6.8AI score

Fedora•added 2025/10/01 3:2 p.m.•4 views

[SECURITY] Fedora 41 Update: rust-ammonia-3.3.1-1.fc41

HTML Sanitization...

Fedora•added 2025/10/01 3:2 p.m.•4 views

[SECURITY] Fedora 41 Update: python-nh3-0.2.15-7.fc41

Python binding to Ammonia HTML sanitizer Rust crate...

Fedora•added 2025/10/01 2:45 p.m.•3 views

[SECURITY] Fedora 42 Update: rust-ammonia-4.0.1-1.fc42

HTML Sanitization...

Fedora•added 2025/10/01 2:45 p.m.•4 views

[SECURITY] Fedora 42 Update: python-nh3-0.2.21-2.fc42

Python binding to Ammonia HTML sanitizer Rust crate...

Fedora•added 2025/10/01 12:21 a.m.•5 views

[SECURITY] Fedora 43 Update: python-nh3-0.2.21-8.fc43

Python binding to Ammonia HTML sanitizer Rust crate...

Fedora•added 2025/10/01 12:21 a.m.•4 views

[SECURITY] Fedora 43 Update: rust-ammonia-4.1.2-1.fc43

HTML Sanitization...

Tenable Nessus•added 2025/10/01 12:0 a.m.•2 views

Fedora 42 : python-nh3 / rust-ammonia (2025-7ec84ba6e9)

The remote Fedora 42 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-7ec84ba6e9 advisory. Update the ammonia crate to version 4.0.1 and rebuild python-nh3 to apply fixes for RUSTSEC-2025-0071. Tenable has extracted the preceding description block...

5.6AI score

Exploits0References1

Tenable Nessus•added 2025/10/01 12:0 a.m.•1 views

Fedora 41 : python-nh3 / rust-ammonia (2025-1be5992b52)

The remote Fedora 41 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-1be5992b52 advisory. Update the ammonia crate to version 3.3.1 and rebuild python-nh3 to apply fixes for RUSTSEC-2025-0071. Tenable has extracted the preceding description block...

5.6AI score

Exploits0References1

Tenable Nessus•added 2025/09/30 12:0 a.m.•2 views

Fedora 43 : python-nh3 / rust-ammonia (2025-074aba6ad4)

The remote Fedora 43 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-074aba6ad4 advisory. Update the ammonia crate to version 4.1.2 and rebuild python-nh3 to apply fixes for RUSTSEC-2025-0071. Tenable has extracted the preceding description block...

5.6AI score

Exploits0References1

Snyk•added 2025/09/22 3:40 p.m.•2 views

Cross-site Scripting (XSS)

Overview ammonia is a whitelist-based HTML sanitization library. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the cleaning process when handling embedded svg or math tags. An attacker can execute arbitrary scripts in the context of the affected application by...

6.3CVSS5.5AI score

vulnersOsv•added 2025/09/22 3:40 p.m.•3 views

fluminurs (>=0.1.1 <=0.1.6), html2pango (>=0.2.0 <=0.3.2) +3 more potentially affected by unknown CVE via ammonia (>=2.1.4 <=3.1.4)

ammonia CARGO version =2.1.4, =0.1.1, =0.2.0, =0.3.0, =0.3.1 - telereads =0.1.3 Source cves: unknown CVE Source advisory: OSV:GHSA-MM7X-QFJJ-5G2C...

5.8AI score

vulnersOsv•added 2025/09/22 3:40 p.m.•4 views

marked-sanitizer (=0.0.0) potentially affected by unknown CVE via ammonia (=3.1.4)

ammonia CARGO version =3.1.4 is affected by a known vulnerability. The following packages have a transitive dependency on ammonia and may be impacted: - marked-sanitizer =0.0.0 Source cves: unknown CVE Source advisory: SNYK:RUST-AMMONIA-13004667...

5.8AI score

OSV•added 2025/09/22 3:40 p.m.•0 views

GHSA-MM7X-QFJJ-5G2C Ammonia incorrectly handles embedded SVG and MathML leading to mutation XSS after removal

Affected versions of this crate did not correctly strip namespace-incompatible tags in certain situations, causing it to incorrectly account for differences between HTML, SVG, and MathML. This vulnerability only has an effect when the svg or math tag is allowed, because it relies on a tag being...

6.3CVSS5.9AI score