Lucene search
K

392 matches found

OSV
OSV
added 2026/02/25 2:31 a.m.6 views

CVE-2026-27614 Bugsink is vulnerable to Stored XSS via Pygments fallback in stacktrace rendering

Bugsink is a self-hosted error tracking tool. In versions prior to 2.0.13, an unauthenticated attacker who can submit events to a Bugsink project can store arbitrary JavaScript in an event. The payload executes only if a user explicitly views the affected Stacktrace in the web UI. When Pygments...

9.3CVSS5.9AI score0.00286EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.7 views

Azure Linux 3.0 Security Update: m2crypto / python-pygments (CVE-2019-11358)

The version of m2crypto / python-pygments installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2019-11358 advisory. - jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles...

6.1CVSS6.9AI score0.87218EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 8 : resource-agents-4.1.1-98.el8 (AXSA:2021-2804:10)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2804:10 advisory. python-pygments: Infinite loop in SML lexer may lead to DoS CVE-2021-20270 python-pygments: ReDoS in multiple lexers CVE-2021-27291 Tenable has...

7.5CVSS8.4AI score0.03832EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : python36:3.6 (AXSA:2021-2854:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2854:01 advisory. python-pygments: Infinite loop in SML lexer may lead to DoS CVE-2021-20270 python-pygments: ReDoS in multiple lexers CVE-2021-27291 Tenable has...

7.5CVSS5.6AI score0.03832EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : python27:2.7 (AXSA:2021-2829:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2829:01 advisory. python: Unsafe use of eval on data retrieved via HTTP in the test suite CVE-2020-27619 python-jinja2: ReDoS vulnerability in the urlize filter...

9.8CVSS7.8AI score0.35963EPSS
Exploits5References8
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/10/31 2:8 p.m.4 views

Malicious code in pygments-richstyle (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a965f61b1e51e6c96a8987633eaf2f23001320e4c6b884c33603230c66798e74 Packages silently decrypt content hidden in a dependency and load them as Python extension modules. In the first wave, those are copies of legitimate aiohttp a...

7AI score
Exploits0References3
OSV
OSV
added 2025/10/31 2:8 p.m.9 views

MAL-2025-191654 Malicious code in pygments-richstyle (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a965f61b1e51e6c96a8987633eaf2f23001320e4c6b884c33603230c66798e74 Packages silently decrypt content hidden in a dependency and load them as Python extension modules. In the first wave, those are copies of legitimate aiohttp a...

6.8AI score
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-0026

Malware in sbrugna...

9.3CVSS8.9AI score0.06664EPSS
Exploits0References18
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-0207

Malware in sbrugna...

7.5CVSS7.4AI score0.02707EPSS
Exploits0References21
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-0208

Malware in sbrugna...

7.5CVSS7.4AI score0.03832EPSS
Exploits1References25
Microsoft CVE
Microsoft CVE
added 2025/10/02 6:11 a.m.5 views

A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer.

...

5.5CVSS7AI score0.00503EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2021-27291

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming languages rely heavily on regular expressions. Some of the regular expressions have...

7.5CVSS6.7AI score0.03832EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 4: python-pygments (TSSA-2025:0126)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0126 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

5.5CVSS6.3AI score0.00503EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.2 views

TencentOS Server 3: python-pygments (TSSA-2022:0180)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0180 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.5CVSS7.5AI score0.03832EPSS
Exploits1References3
PyPA
PyPA
added 2025/03/17 4:35 p.m.7 views

After the owner removed the project from PyPI, another user uploaded a new version with non-working code

The pygments-style-solarized project was removed from PyPI by its owner on 2021-08-26.The GitHub repository was also updated to show unmaintained, and archived on 2025-08-31.Another user uploaded a new version, 100.10.7, which contains non-working code,with clear language that it intends to be a...

6.8AI score
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.7 views

Azure Linux 3.0 Security Update: python-pygments (CVE-2021-20270)

The version of python-pygments installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-20270 advisory. - An infinite loop in SMLLexer in Pygments versions 1.5 to 2.7.3 May lead to denial of service when...

7.5CVSS7.5AI score0.02707EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.14 views

Azure Linux 3.0 Security Update: python-pygments (CVE-2021-27291)

The version of python-pygments installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-27291 advisory. - In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming languages rely heavily on...

7.5CVSS7.4AI score0.03832EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/11/27 12:0 a.m.4 views

Ubuntu: Security Advisory (USN-7128-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS7.5AI score0.00503EPSS
Exploits1References2
OSV
OSV
added 2024/11/26 1:43 p.m.8 views

USN-7128-1 pygments vulnerability

Sebastian Chnelik discovered that Pygments had an inefficient regex query for analyzing certain inputs. An attacker could possibly use this issue to cause a denial of service...

5.5CVSS5.8AI score0.00503EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2024/11/26 1:43 p.m.244 views

USN-7128-1: Pygments vulnerability

Sebastian Chnelik discovered that Pygments had an inefficient regex query for analyzing certain inputs. An attacker could possibly use this issue to cause a denial of service...

5.5CVSS6.3AI score0.00503EPSS
Exploits1
Rows per page
Query Builder