Lucene search
K

8 matches found

Github Security Blog
Github Security Blog
added 2 days ago7 views

Coder's workspace app upsert allows cross-workspace agent rebinding via user-controlled app ID

Summary UpsertWorkspaceApp overwrites an existing app's agentid on a primary-key conflict and insertAgentApp accepts the app ID from the provisioner's CompleteJob payload without verifying it belongs to the workspace being built. CompleteJob runs under dbauthz.AsProvisionerd so the authorization...

8.7CVSS5.9AI score
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2 days ago8 views

PT-2026-56073

Name of the Vulnerable Software and Affected Versions Coder versions prior to 2.34.2 Coder versions prior to 2.33.8 Coder versions prior to 2.32.7 Coder versions prior to 2.29.17 Description An issue exists where the UpsertWorkspaceApp function overwrites an existing application's agent id during...

8.7CVSS5.9AI score
Exploits0References10
RedhatCVE
RedhatCVE
added 2026/06/05 7:44 p.m.10 views

CVE-2026-39826

A flaw was found in html/template. A trusted template author could craft a script tag with an empty or whitespace-only 'type' attribute. This vulnerability causes the template engine to incorrectly escape data passed into the script block, potentially leading to cross-site scripting XSS. An...

6.1CVSS5.3AI score0.00371EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/05/09 2:43 a.m.10 views

SUSE CVE-2026-39826

If a trusted template author were to write a tag containing an empty 'type' attribute or a 'type' attribute with an ASCII whitespace, the execution of the template would incorrectly escape any data passed into the block...

6.1CVSS5.9AI score0.00371EPSS
Exploits0References14
NVD
NVD
added 2026/05/07 8:16 p.m.35 views

CVE-2026-39826

If a trusted template author were to write a tag containing an empty 'type' attribute or a 'type' attribute with an ASCII whitespace, the execution of the template would incorrectly escape any data passed into the block...

6.1CVSS0.00371EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/07 7:41 p.m.10 views

CVE-2026-39826

If a trusted template author were to write a...

5.8AI score0.00371EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/28 12:0 a.m.13 views

PT-2026-38567

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description A flaw exists where a trusted template author can include a tag with an empty type attribute or a type attribute containing ASCII whitespace. This causes the...

9.8CVSS5.9AI score0.00371EPSS
Exploits0
OSV
OSV
added 2024/05/29 6:44 p.m.21 views

GHSA-4RMG-292M-WG3W Smarty vulnerable to PHP Code Injection by malicious attribute in extends-tag

Impact Template authors could inject php code by choosing a malicous file name for an extends-tag. Users that cannot fully trust template authors should update asap. Patches Please upgrade to the most recent version of Smarty v4 or v5. There is no patch for v3...

7.3CVSS7.4AI score0.00507EPSS
Exploits0References5
Rows per page
Query Builder