Lucene search
+L

25 matches found

osv
osv
added 4 days ago4 views

OPENSUSE-SU-2026:21324-1 Security update for go1.25

This update for go1.25 fixes the following issues - Update to version go1.25.12 bsc1244485. - CVE-2026-25679: net/url: reject IPv6 literal not at start of host bsc1259264. - CVE-2026-27139: os: FileInfo can escape from a Root bsc1259268. - CVE-2026-27142: html/template: URLs in meta content...

7.8CVSS6.1AI score0.0052EPSS
Exploits0References13
osv
osv
added 2026/05/11 3:56 p.m.4 views

GHSA-GX5P-JG67-6X7H Next.js has cross-site scripting in beforeInteractive scripts with untrusted input

Impact Applications that use beforeInteractive scripts together with untrusted content can be vulnerable to cross-site scripting. In affected versions, serialized script content was not escaped safely before being embedded into the document, which could allow attacker-controlled input to break ou...

6.1CVSS5.7AI score0.00205EPSS
Exploits0References5
osv
osv
added 2026/05/07 7:41 p.m.2 views

CVE-2026-39823 Bypass of meta content URL escaping causes XSS in html/template

CVE-2026-27142 fixed a vulnerability in which URLs were not correctly escaped inside of a tag's attribute. If the URL content were to insert ASCII whitespaces around the '=' rune inside of the attribute, the escaper would fail to similarly escape it, leading to XSS...

6.1CVSS6.4AI score0.00314EPSS
Exploits0References7
cve
cve
added 2026/05/07 7:41 p.m.67 views

CVE-2026-39823

Summary: CVE-2026-39823 covers an escapebug in HTML meta tag content handling that can trigger XSS when URLs are inserted into a meta tag’s content attribute and whitespace is manipulated. Multiple connected sources confirm the issue and describe the root cause as incorrect escaping of URLs insid...

6.1CVSS7.3AI score0.00328EPSS
Exploits0References4Affected Software1
cvelist
cvelist
added 2026/05/07 7:41 p.m.44 views

CVE-2026-39823 Bypass of meta content URL escaping causes XSS in html/template

CVE-2026-27142 fixed a vulnerability in which URLs were not correctly escaped inside of a tag's attribute. If the URL content were to insert ASCII whitespaces around the '=' rune inside of the attribute, the escaper would fail to similarly escape it, leading to XSS...

0.00314EPSS
Exploits0References4
githubexploit
githubexploit
added 2026/04/29 7:49 p.m.86 views

xsslab

Dalfox XSS Lab Stored XSS / second-order XSS laboratory for i...

5.4AI score
Exploits0
osv
osv
added 2026/04/16 7:24 a.m.5 views

OPENSUSE-SU-2026:20496-1 Security update for go1.25

This update for go1.25 fixes the following issues: Update to go1.25.8 bsc1244485: - CVE-2026-25679: net/url: reject IPv6 literal not at start of host bsc1259264. - CVE-2026-27139: os: FileInfo can escape from a Root bsc1259268. - CVE-2026-27142: html/template: URLs in meta content attribute actio...

7.5CVSS5.8AI score0.0052EPSS
Exploits0References7
cve
cve
added 2026/04/11 1:24 a.m.35 views

CVE-2026-5226

The CVE concerns the WordPress plugin Optimole – Optimize Images in Real Time, affected up to version 4.2.3. It describes a Reflected Cross-Site Scripting (XSS) flaw caused by insufficient output escaping of user-supplied URL paths in get_current_url(), which are inserted into JavaScript by repla...

6.1CVSS6AI score0.00495EPSS
Exploits0References9
redhat
redhat
added 2026/04/09 11:0 a.m.3 views

html/template: golang: html/template: Cross-Site Scripting (XSS) via improper context and brace depth tracking in JS template literals

A flaw was found in the html/template package. This vulnerability arises from improper tracking of context and brace depth within JavaScript JS template literals. A remote attacker could exploit these issues to cause content to be incorrectly or improperly escaped, leading to Cross-Site Scripting...

6.1CVSS6AI score0.0029EPSS
Exploits0References8
nessus
nessus
added 2026/03/25 12:0 a.m.2 views

SUSE SLES15 Security Update : go1.26-openssl (SUSE-SU-2026:0993-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0993-1 advisory. Update to go 1.26.1 bsc1255111, jscSLE-18320: - CVE-2026-25679: net/url: reject IPv6 literal not at start of host bsc1259264. -...

7.5CVSS6.2AI score0.00606EPSS
Exploits0References17
amazon
amazon
added 2026/03/19 12:0 a.m.20 views

Medium: golist

Issue Overview: url.Parse insufficiently validated the host/authority component and accepted some invalid URLs. CVE-2026-25679 On Unix platforms, when listing the contents of a directory using File.ReadDir or File.Readdir the returned FileInfo could reference a file outside of the Root in which t...

7.5CVSS5.8AI score0.0052EPSS
Exploits0
osv
osv
added 2026/03/06 10:16 p.m.10 views

AZL-79604 CVE-2026-27142 affecting package gcc 11.2.0-9

Actions which insert URLs into the content attribute of HTML meta tags are not escaped. This can allow XSS if the meta tag also has an http-equiv attribute with the value "refresh". A new GODEBUG setting has been added, htmlmetacontenturlescape, which can be used to disable escaping URLs in actio...

6.1CVSS7.2AI score0.00328EPSS
Exploits0References1
cvelist
cvelist
added 2026/03/06 9:28 p.m.25 views

CVE-2026-27142 URLs in meta content attribute actions are not escaped in html/template

Actions which insert URLs into the content attribute of HTML meta tags are not escaped. This can allow XSS if the meta tag also has an http-equiv attribute with the value "refresh". A new GODEBUG setting has been added, htmlmetacontenturlescape, which can be used to disable escaping URLs in actio...

0.00328EPSS
Exploits0References4
attackerkb
attackerkb
added 2026/02/20 10:25 p.m.6 views

CVE-2026-27119

svelte performance oriented web framework. From 5.39.3, =5.51.4, in certain circumstances, the server-side rendering output of an element does not properly escape its content, potentially allowing HTML injection in the SSR output. Client-side rendering is not affected. This vulnerability is fixed...

5CVSS5.5AI score0.00182EPSS
Exploits0References2Affected Software1
osv
osv
added 2026/02/19 3:18 p.m.3 views

GHSA-H7H7-MM68-GMRC Svelte affected by XSS in SSR `<option>` element

In certain circumstances, the server-side rendering output of an element does not properly escape its content, potentially allowing HTML injection in the SSR output. Client-side rendering is not affected...

5CVSS5.5AI score0.00182EPSS
Exploits0References3
redhatcve
redhatcve
added 2025/05/22 4:56 a.m.8 views

CVE-2019-19850

An issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. Because escaping of user-submitted content is mishandled, the class QueryGenerator is vulnerable to SQL injection. Exploitation requires having the system extension ext:lowlevel installed, and a valid backe...

7.2CVSS7.5AI score0.00868EPSS
Exploits0References1
veracode
veracode
added 2025/01/27 3:5 a.m.7 views

Cross-Site Scripting (XSS)

mathlive is vulnerable to Cross-site scripting XSS. The vulnerability is due to the lack of proper escaping of HTML content when using commands like \htmlData, which allows the injection and execution of malicious scripts...

7.2AI score
Exploits0
redhat
redhat
added 2023/11/14 4:4 p.m.4 views

golang: html/template: improper handling of HTML-like comments within script contexts

A flaw was found in Golang. The html/template package did not properly handle HMTL-like "" comment tokens, nor hashbang "!" comment tokens, in contexts. This issue may cause the template parser to improperly interpret the contents of contexts, causing actions to be improperly escaped...

6.1CVSS6.7AI score0.00815EPSS
Exploits0References8
osv
osv
added 2023/07/25 5:30 p.m.31 views

CVE-2023-35929 Tuleap Cross-site Scripting vulnerability in the card field of the agile dashboard apps

Tuleap is a free and open source suite to improve management of software development and collaboration. Prior to version 14.10.99.4 of Tuleap Community Edition and prior to versions 14.10-2 and 14.9-5 of Tuleap Enterprise Edition, content displayed in the "card fields" visible in the kanban and P...

5.4CVSS5.6AI score0.00397EPSS
Exploits0References6
euvd
euvd
added 2022/09/21 3:45 p.m.9 views

EUVD-2022-6786

Jenkins Anchore Container Image Scanner Plugin 1.0.24 and earlier does not escape content provided by the Anchore engine API, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers able to control API responses by Anchore engine...

5.4CVSS5.2AI score0.00602EPSS
Exploits0References4
Rows per page
Query Builder