Lucene search
K

8 matches found

OSV
OSV
added 2026/05/22 3:1 p.m.2 views

CVE-2026-25681 Invoking incorrect handling of character references in DOCTYPE nodes in golang.org/x/net/html

Parsing arbitrary HTML which is then rendered using Render can result in an unexpected HTML tree. This can be leveraged to execute XSS attacks in applications that attempt to sanitize input HTML before rendering...

6.1CVSS6.1AI score0.00178EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-45033

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.00878EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-3194

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00338EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-15656

Malicious code in bioql PyPI...

4.8CVSS6.5AI score0.00276EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/09/05 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-35131

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Content on the groups page required additional sanitizing to prevent an XSS risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8 and 3.11 to...

6.1CVSS6.2AI score0.00677EPSS
Exploits0References2
CVE
CVE
added 2025/07/19 2:22 a.m.31 views

CVE-2025-7658

CVE-2025-7658 refers to a Stored Cross-Site Scripting vulnerability in the WordPress plugin Temporarily Hidden Content (Temporarily Hidden Content) via the shortcodes temphc-start. Affected versions are those up to and including 1.0.6. The issue arises from insufficient input sanitization and out...

6.4CVSS5.9AI score0.00218EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/11/07 8:39 a.m.3 views

golang: html/template: improper handling of JavaScript whitespace

A flaw was found in golang, where not all valid JavaScript white-space characters were considered white space. Due to this issue, templates containing white-space characters outside of the character set "\t\n\f\r\u0020\u2028\u2029" in JavaScript contexts that also contain actions may not be...

9.8CVSS6.5AI score0.01548EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/07/06 3:1 a.m.4 views

golang: html/template: improper handling of JavaScript whitespace

A flaw was found in golang, where not all valid JavaScript white-space characters were considered white space. Due to this issue, templates containing white-space characters outside of the character set "\t\n\f\r\u0020\u2028\u2029" in JavaScript contexts that also contain actions may not be...

9.8CVSS6.5AI score0.01548EPSS
Exploits0References6
Rows per page
Query Builder