Lucene search
K

4 matches found

Snyk
Snyk
added 2026/05/22 5:42 p.m.10 views

Inefficient Algorithmic Complexity

Overview golang.org/x/net/html is a package that implements an HTML5-compliant tokenizer and parser. Affected versions of this package are vulnerable to Inefficient Algorithmic Complexity in parse.go, when checking attributes iteratively. An attacker can cause excessive CPU consumption by providi...

7.5CVSS5.8AI score0.00248EPSS
Exploits0References3
OSV
OSV
added 2026/02/05 6:16 p.m.6 views

AZL-76931 CVE-2025-58190 affecting package docker-buildx 0.14.0-8

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

5.3CVSS5.7AI score0.00482EPSS
Exploits1References1
OPENSUSE Linux
OPENSUSE Linux
added 2025/11/02 12:0 a.m.3 views

Security update for git-bug (moderate)

openSUSE Security Update: Security update for git-bug Announcement ID: openSUSE-SU-2025:0418-1 Rating: moderate References: 1251463 1251664 Cross-References: CVE-2025-47911 CVE-2025-58190 CVSS scores: CVE-2025-47911 SUSE: 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N...

6.9CVSS6.9AI score0.03092EPSS
Exploits3References2
RedhatCVE
RedhatCVE
added 2023/08/07 5:49 a.m.52 views

CVE-2023-3978

A flaw was found in the Golang HTML package where it is vulnerable to Cross-site scripting caused by the improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim's web browser within the security...

6.1CVSS6.4AI score0.00843EPSS
Exploits0References6
Rows per page
Query Builder