Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

CNNVD
CNNVDadded 2026/02/09 12:0 a.m.2 views

SandboxJS 安全漏洞

SandboxJS is a security assessment tool developed by nyariv. Versions of SandboxJS prior to 0.8.31 contained security vulnerabilities. These vulnerabilities stemmed from a sandbox escape exploit that allowed sandbox code to contaminate built-in prototypes on the host through array literal...

10CVSS6.3AI score0.00057EPSS
Exploits1References2
Github Security Blog
Github Security Blogadded 2022/02/09 10:17 p.m.20 views

Incorrect Calculation in github.com/open-policy-agent/opa

Impact Under certain conditions, pretty-printing an AST that contains synthetic nodes could change the logic of some statements by reordering array literals. Example of policies impacted are those that parse and compare web paths, see the example below. All of these three conditions have to be me...

6.3CVSS0.3AI score0.00311EPSS
Exploits1References8Affected Software1
OSV
OSVadded 2022/02/09 10:17 p.m.11 views

GHSA-HCW3-J74M-QC58 Incorrect Calculation in github.com/open-policy-agent/opa

Impact Under certain conditions, pretty-printing an AST that contains synthetic nodes could change the logic of some statements by reordering array literals. Example of policies impacted are those that parse and compare web paths, see the example below. All of these three conditions have to be me...

6.3CVSS5.7AI score0.00311EPSS
Exploits1References8
Cvelist
Cvelistadded 2022/02/09 9:50 p.m.14 views

CVE-2022-23628 Array literal misordering in github.com/open-policy-agent/opa

OPA is an open source, general-purpose policy engine. Under certain conditions, pretty-printing an abstract syntax tree AST that contains synthetic nodes could change the logic of some statements by reordering array literals. Example of policies impacted are those that parse and compare web paths...

6.3CVSS6.5AI score0.00311EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2022/02/09 9:50 p.m.4 views

CVE-2022-23628 Array literal misordering in github.com/open-policy-agent/opa

OPA is an open source, general-purpose policy engine. Under certain conditions, pretty-printing an abstract syntax tree AST that contains synthetic nodes could change the logic of some statements by reordering array literals. Example of policies impacted are those that parse and compare web paths...

6.3CVSS6.3AI score0.00311EPSS
Exploits1References4
CNNVD
CNNVDadded 2022/02/09 12:0 a.m.1 views

Open Policy Agent 安全漏洞

Open Policy Agent is an open source general-purpose policy engine that enables uniform, context-aware policy enforcement across the stack. Open Policy Agent suffers from a security vulnerability that stems from the fact that under certain conditions, pretty-printing an Abstract Syntax Tree AST...

6.3CVSS5.9AI score0.00311EPSS
Exploits1References5
Rows per page
Query Builder