Lucene search
K

6 matches found

Wolfi
Wolfi
added 2026/04/17 1:48 a.m.13 views

GHSA-CQ8V-F236-94QC vulnerabilities

Vulnerabilities for packages: yara-x, atuin, zellij, xh, nushell, netavark, wasmcloud, mdbook, yazi, linkerd2, py3-xet-core, buck2, ruff, deno, efs-utils, samply, vector, linkerd-network-validator, rustup, pixi, kdash, zed, cargo-c, wizer, cargo-audit, ntpd-rs, uutils, rav1e, sccache, just, pgcat...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/04/17 1:17 a.m.8 views

GHSA-CQ8V-F236-94QC vulnerabilities

Vulnerabilities for packages: kdash, mountpoint-s3, linkerd2-proxy, pgcat, worktrunk, wasmcloud, hurl, mise, yara-x, bootc, linkerd-network-validator, netavark, sdp-k8s-injector, wasmtime, ruff, zola, shadowsocks-rust, valkey-ldap, yazi, zizmor, komodo, fnm, sentry-cli, cargo-audit, buck2, just,...

6.1AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-18116

Malicious code in bioql PyPI...

6.6AI score
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/06/11 2:46 p.m.9 views

Regex literal in Hurl files are not escaped when exported to HTML, allowing injections

Given this Hurl file: regex.hurl: GET https://foo.com HTTP 200 Asserts jsonpath "$.body" matches // When exported to HTML: $ hurlfmt --out html regex.hurl GET https://foo.com HTTP 200 Asserts jsonpath "$.body" matches // The regex literal // is not escaped: // When opened in a browser, the code i...

7.2AI score
Exploits0References4Affected Software1
OSV
OSV
added 2025/06/11 2:46 p.m.3 views

GHSA-V33J-V3X4-42QG Regex literal in Hurl files are not escaped when exported to HTML, allowing injections

Given this Hurl file: regex.hurl: GET https://foo.com HTTP 200 Asserts jsonpath "$.body" matches // When exported to HTML: $ hurlfmt --out html regex.hurl GET https://foo.com HTTP 200 Asserts jsonpath "$.body" matches // The regex literal // is not escaped: // When opened in a browser, the code i...

7.2AI score
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/06/11 12:0 a.m.3 views

PT-2025-26514 · Crates.Io · Hurl

Given this Hurl file: regex.hurl: GET https://foo.com HTTP 200 Asserts jsonpath "$.body" matches // When exported to HTML: $ hurlfmt --out html regex.hurl GET https://foo.com HTTP 200 Asserts jsonpath "$.body" matches // The regex literal // is not escaped: // When opened in a browser, the code i...

7.3AI score
Exploits0References5
Rows per page
Query Builder