Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
đŸ”„ Daily Hot!
đŸ’ȘđŸœ CPE Enhanced Advisories
đŸ•¶ Shadow Exploits
đŸ•”đŸŒ Vulners CPE
🔐 Security news
đŸ’» Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
đŸ€– AI High Score
📰 CVE Feed
show all

3 matches found

Ubuntu
Ubuntu‱added 2026/03/05 4:4 p.m.‱7 views

USN-8077-1: Bleach vulnerabilities

It was discovered that Bleach did not properly sanitize URI attributes containing character entities. An attacker could possibly use this issue to construct a URI with a disallowed scheme that would bypass sanitization, leading to cross-site scripting. This issue only affected Ubuntu 18.04 LTS...

9.8CVSS5.5AI score0.02229EPSS
Exploits4
OSV
OSV‱added 2020/03/24 10:15 p.m.‱1 views

DEBIAN-CVE-2020-6816

In Mozilla Bleach before 3.12, a mutation XSS in bleach.clean when RCDATA and either svg or math tags are whitelisted and the keyword argument strip=False...

6.1CVSS7.2AI score0.01301EPSS
Exploits1References1
Github Security Blog
Github Security Blog‱added 2020/03/24 3:6 p.m.‱74 views

Bleach vulnerable to mutation XSS via whitelisted math or svg and raw tag

Impact A mutation XSS affects users calling bleach.clean with all of: the svg or math in the allowed/whitelisted tags an RCDATA tag see below in the allowed/whitelisted tags the keyword argument strip=False Patches Users are encouraged to upgrade to bleach v3.1.2 or greater. Workarounds modify...

6.1CVSS6.3AI score0.01301EPSS
Exploits1References8Affected Software1
Rows per page
Query Builder