Lucene search
K

10 matches found

OSV
OSV
added 2024/03/06 11:7 a.m.27 views

BIT-GOLANG-2020-24553

Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header...

6.1CVSS6.3AI score0.03646EPSS
Exploits2References11
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/15 5:50 p.m.32 views

Security Bulletin: A security vulnerability in Golang Go affects IBM Cloud Pak for Multicloud Management Managed Service.

Summary A security vulnerability in Golang Go affects IBM Cloud Pak for Multicloud Management Managed Service. Vulnerability Details CVEID: CVE-2020-24553 DESCRIPTION: Golang Go is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the CGI/FCGI handlers. A...

6.1CVSS0.9AI score0.03646EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/09 4:42 a.m.33 views

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Go

Summary IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of Go. Vulnerability Details CVEID: CVE-2020-24553 DESCRIPTION: Golang Go is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the CGI/FCGI handlers. A remote attacker...

6.1CVSS0.7AI score0.03646EPSS
Exploits2Affected Software1
Amazon
Amazon
added 2020/11/11 12:0 a.m.39 views

Medium: golang

Issue Overview: Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header. CVE-2020-24553 Affected Packages: golang Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for...

6.1CVSS6.9AI score0.03646EPSS
Exploits2
OSV
OSV
added 2020/09/02 5:15 p.m.28 views

CVE-2020-24553

Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header...

6.1CVSS5.9AI score
Exploits0References10
Prion
Prion
added 2020/09/02 5:15 p.m.22 views

Type confusion

Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header...

4.3CVSS6AI score0.03646EPSS
Exploits2References10Affected Software4
UbuntuCve
UbuntuCve
added 2020/09/02 5:15 p.m.35 views

CVE-2020-24553

Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header...

6.1CVSS6.8AI score0.03646EPSS
Exploits2References6
Debian CVE
Debian CVE
added 2020/09/02 4:25 p.m.28 views

CVE-2020-24553

Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header...

6.1CVSS6.7AI score0.03646EPSS
Exploits2
AlpineLinux
AlpineLinux
added 2020/09/02 4:25 p.m.626 views

CVE-2020-24553

Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header...

6.1CVSS6.5AI score0.03646EPSS
Exploits2
OpenVAS
OpenVAS
added 2012/12/14 12:0 a.m.12 views

Fedora Update for totpcgi FEDORA-2012-19605

Check for the Version of totpcgi OpenVAS Vulnerability Test Fedora Update for totpcgi FEDORA-2012-19605 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

7.4AI score
Exploits0References2
Rows per page
Query Builder