Lucene search
K

402 matches found

OSV
OSV
added 2026/07/02 5:30 p.m.3 views

SUSE-SU-2026:2728-1 Security update for python-lxml

This update for python-lxml fixes the following issue - CVE-2026-41066: information disclosure via untrusted XML input leading to local file read bsc1263254...

7.5CVSS5.9AI score0.00324EPSS
Exploits1References3
OSV
OSV
added 2026/06/29 12:0 a.m.2 views

OPENSUSE-SU-2026:11147-1 python-lxml-doc-6.1.1-1.1 on GA media

These are all security issues fixed in the python-lxml-doc-6.1.1-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.012EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/29 12:0 a.m.9 views

PT-2026-53938

Name of the Vulnerable Software and Affected Versions python313-lxml html clean versions prior to 0.4.5-1.1 python-lxml-doc versions prior to 6.1.1-1.1 Description Security issues were identified in the python313-lxml html clean and python-lxml-doc packages. Recommendations Update python313-lxml...

8.2CVSS5.9AI score
Exploits0References8
OSV
OSV
added 2026/06/22 12:16 p.m.2 views

SUSE-SU-2026:2488-1 Security update for python-lxml

This update for python-lxml fixes the following issue - CVE-2026-41066: information disclosure via untrusted XML input leading to local file read bsc1263254...

7.5CVSS5.9AI score0.00324EPSS
Exploits1References3
Photon
Photon
added 2026/06/16 12:0 a.m.11 views

Critical Photon OS Security Update - PHSA-2026-5.0-0882

Updates of 'python3-mako', 'python3-mistune', 'python3-lxml', 'ruby', 'linux', 'python3-ujson', 'linux-esx', 'python3' packages of Photon OS have been released...

8.8CVSS7AI score0.00298EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in lxml

A XSS vulnerability was discovered in the clean module of python-lxml’s versions prior to 4.6.3. When the “safe attrsOnly” and “forms” arguments are disabled, the Cleaner class does not remove the “formaction” attribute, allowing JavaScript to bypass the sanitizer. A remote attacker could exploit...

6.1CVSS7AI score0.04002EPSS
Exploits1References1
OPENSUSE Linux
OPENSUSE Linux
added 2026/05/19 12:0 a.m.9 views

Security update for python-lxml (moderate)

openSUSE security update: security update for python-lxml ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20737-1 Rating: moderate References: bsc1263254 Cross-References: CVE-2026-41066 CVSS scores: CVE-2026-41066 SUSE : 5.9...

6CVSS5.8AI score0.00324EPSS
Exploits1References1
OSV
OSV
added 2026/05/18 8:52 a.m.6 views

SUSE-SU-2026:21731-1 Security update for python-lxml

This update for python-lxml fixes the following issue - CVE-2026-41066: Information disclosure via untrusted XML input leading to local file read bsc1263254...

7.5CVSS5.8AI score0.00324EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/05/16 12:0 a.m.9 views

SUSE SLES16 Security Update : python-lxml (SUSE-SU-2026:21603-1)

The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:21603-1 advisory. This update for python-lxml fixes the following issue - CVE-2026-41066: Information disclosure via untrusted XML input leading to local fil...

7.5CVSS5.8AI score0.00324EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/05/14 12:0 a.m.10 views

Amazon Linux 2 : python-lxml, --advisory ALAS2-2026-3297 (ALAS-2026-3297)

The version of python-lxml installed on the remote host is prior to 3.2.1-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3297 advisory. lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the...

7.5CVSS5.8AI score0.00324EPSS
Exploits1References4
Amazon
Amazon
added 2026/05/14 12:0 a.m.18 views

Important: python-lxml

Issue Overview: lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration with resolveentities=True allows untrusted XML input to read local files. Setting the resolveentities option explicitly to...

7.5CVSS5.8AI score0.00324EPSS
Exploits1
OSV
OSV
added 2026/05/11 10:11 a.m.5 views

OPENSUSE-SU-2026:20737-1 Security update for python-lxml

This update for python-lxml fixes the following issue - CVE-2026-41066: Information disclosure via untrusted XML input leading to local file read bsc1263254...

7.5CVSS5.8AI score0.00324EPSS
Exploits1References2
OSV
OSV
added 2026/05/11 10:11 a.m.5 views

SUSE-SU-2026:21603-1 Security update for python-lxml

This update for python-lxml fixes the following issue - CVE-2026-41066: Information disclosure via untrusted XML input leading to local file read bsc1263254...

7.5CVSS5.8AI score0.00324EPSS
Exploits1References3
OSV
OSV
added 2026/05/11 10:11 a.m.6 views

SUSE-SU-2026:21587-1 Security update for python-lxml

This update for python-lxml fixes the following issue - CVE-2026-41066: Information disclosure via untrusted XML input leading to local file read bsc1263254...

7.5CVSS5.8AI score0.00324EPSS
Exploits1References3
CBLMariner
CBLMariner
added 2026/05/06 12:10 a.m.11 views

CVE-2026-41066 affecting package python-lxml for versions less than 4.9.3-2

CVE-2026-41066 affecting package python-lxml for versions less than 4.9.3-2. A patched version of the package is available...

7.5CVSS5.8AI score0.00324EPSS
Exploits1
OSV
OSV
added 2026/04/25 5:48 a.m.7 views

OESA-2026-2012 python-lxml security update

\ Security Fixes: lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration with resolveentities=True allows untrusted XML input to read local files. Setting the resolveentities option explicitly to...

7.5CVSS5.4AI score0.00324EPSS
Exploits1References2
OSV
OSV
added 2026/04/25 5:48 a.m.8 views

OESA-2026-2011 python-lxml security update

\ Security Fixes: lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration with resolveentities=True allows untrusted XML input to read local files. Setting the resolveentities option explicitly to...

7.5CVSS5.4AI score0.00324EPSS
Exploits1References2
OSV
OSV
added 2026/04/25 5:48 a.m.22 views

OESA-2026-2009 python-lxml security update

\ Security Fixes: lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration with resolveentities=True allows untrusted XML input to read local files. Setting the resolveentities option explicitly to...

7.5CVSS5.3AI score0.00324EPSS
Exploits1References2
OSV
OSV
added 2026/04/21 12:0 a.m.4 views

OPENSUSE-SU-2026:10596-1 python-lxml-doc-6.1.0-1.1 on GA media

These are all security issues fixed in the python-lxml-doc-6.1.0-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.00324EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/03/13 12:0 a.m.3 views

openSUSE 16 Security Update : python-lxml_html_clean (openSUSE-SU-2026:20345-1)

The remote openSUSE 16 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20345-1 advisory. Changes in python-lxmlhtmlclean: - CVE-2026-28348: improper keywords checking can allow external CSS loading bsc1259378 - CVE-2026-28350: lack o...

6.1CVSS5.9AI score0.00254EPSS
Exploits2References6
Rows per page
Query Builder