Lucene search
K

792 matches found

RedHat Linux
RedHat Linux
added 2019/05/13 10:51 a.m.98 views

Important: Red Hat Security Advisory: python-jinja2 security update

An update for python-jinja2 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

8.6CVSS6.9AI score0.03603EPSS
Exploits1References2
OSV
OSV
added 2019/05/13 10:43 a.m.25 views

RLSA-2019:1152 Important: python-jinja2 security update

The python-jinja2 package contains Jinja2, a template engine written in pure Python. Jinja2 provides a Django inspired non-XML syntax but supports inline expressions and an optional sandboxed environment. Security Fixes: python-jinja2: str.formatmap allows sandbox escape CVE-2019-10906 For more...

9CVSS7AI score0.03603EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2019/05/07 12:0 a.m.58 views

Fedora Update for php-Smarty2 FEDORA-2018-7adf863a47

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2019/05/07 12:0 a.m.55 views

Fedora Update for php-twig2 FEDORA-2019-a9a37fed18

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2019/05/07 12:0 a.m.72 views

Fedora Update for php-twig FEDORA-2019-c8712a42dc

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2019/05/07 12:0 a.m.77 views

Fedora Update for php-Smarty FEDORA-2019-e595e8a7d7

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8AI score
Exploits0References2
Fedora
Fedora
added 2019/04/27 11:11 p.m.35 views

[SECURITY] Fedora 29 Update: python-jinja2-2.10.1-1.fc29

Jinja2 is a template engine written in pure Python. It provides a Django inspired non-XML syntax but supports inline expressions and an optional sandboxed environment. If you have any exposure to other text-based template languages, such as Smarty or Django, you should feel right at home with...

8.6CVSS0.9AI score0.03603EPSS
Exploits1
Fedora
Fedora
added 2019/04/27 9:36 p.m.36 views

[SECURITY] Fedora 28 Update: python-jinja2-2.10.1-1.fc28

Jinja2 is a template engine written in pure Python. It provides a Django inspired non-XML syntax but supports inline expressions and an optional sandboxed environment. If you have any exposure to other text-based template languages, such as Smarty or Django, you should feel right at home with...

8.6CVSS0.9AI score0.03603EPSS
Exploits1
Fedora
Fedora
added 2019/04/27 9:32 p.m.35 views

[SECURITY] Fedora 30 Update: python-jinja2-2.10.1-1.fc30

Jinja2 is a template engine written in pure Python. It provides a Django inspired non-XML syntax but supports inline expressions and an optional sandboxed environment. If you have any exposure to other text-based template languages, such as Smarty or Django, you should feel right at home with...

8.6CVSS0.9AI score0.03603EPSS
Exploits1
Hacker One
Hacker One
added 2019/04/07 10:3 a.m.16 views

New Relic: Stored XSS at APM applications listing

Hello team, I have discovered that the attacker which can create APM app or modify the existing app name can cause a stored XSS firing at APM apps listing page. There is a script like the following at the APM apps listing page: javascript window.applicationData =...

0.4AI score
Exploits0
Fedora
Fedora
added 2019/03/29 7:36 p.m.10 views

[SECURITY] Fedora 30 Update: php-twig-1.38.2-2.fc30

The flexible, fast, and secure template engine for PHP. Fast: Twig compiles templates down to plain optimized PHP code. The overhead compared to regular PHP code was reduced to the very minimum. Secure: Twig has a sandbox mode to evaluate untrusted template code. This allows Twig to be used as a...

3.2AI score
Exploits0
Fedora
Fedora
added 2019/03/29 7:36 p.m.15 views

[SECURITY] Fedora 30 Update: php-twig2-2.7.2-1.fc30

The flexible, fast, and secure template engine for PHP. Fast: Twig compiles templates down to plain optimized PHP code. The overhead compared to regular PHP code was reduced to the very minimum. Secure: Twig has a sandbox mode to evaluate untrusted template code. This allows Twig to be used as a...

3.2AI score
Exploits0
CNVD
CNVD
added 2019/03/29 12:0 a.m.3 views

Jfinal cms backend has arbitrary file read vulnerability

Jfinal cms uses JFinal as a web framework , template engine with beetl, database with mysql, front-end bootstrap, flat ui and other frameworks. Jfinal cms backend exists arbitrary file read vulnerability. Attackers can use the vulnerability to read the database configuration file...

7AI score
Exploits0
Fedora
Fedora
added 2019/03/23 2:25 a.m.12 views

[SECURITY] Fedora 28 Update: php-twig-1.38.2-2.fc28

The flexible, fast, and secure template engine for PHP. Fast: Twig compiles templates down to plain optimized PHP code. The overhead compared to regular PHP code was reduced to the very minimum. Secure: Twig has a sandbox mode to evaluate untrusted template code. This allows Twig to be used as a...

3.2AI score
Exploits0
Fedora
Fedora
added 2019/03/23 2:25 a.m.18 views

[SECURITY] Fedora 28 Update: php-twig2-2.7.2-1.fc28

The flexible, fast, and secure template engine for PHP. Fast: Twig compiles templates down to plain optimized PHP code. The overhead compared to regular PHP code was reduced to the very minimum. Secure: Twig has a sandbox mode to evaluate untrusted template code. This allows Twig to be used as a...

3.2AI score
Exploits0
Fedora
Fedora
added 2019/03/06 3:28 p.m.36 views

[SECURITY] Fedora 28 Update: php-Smarty-3.1.33-1.fc28

Smarty is a template engine for PHP, facilitating the separation of presentation HTML/CSS from application logic. This implies that PHP code is application logic, and is separated from the presentation. Autoloader: /usr/share/php/Smarty/autoload.php...

9.8CVSS1.8AI score0.03463EPSS
Exploits2
Fedora
Fedora
added 2019/03/06 6:58 a.m.29 views

[SECURITY] Fedora 29 Update: php-Smarty-3.1.33-1.fc29

Smarty is a template engine for PHP, facilitating the separation of presentation HTML/CSS from application logic. This implies that PHP code is application logic, and is separated from the presentation. Autoloader: /usr/share/php/Smarty/autoload.php...

9.8CVSS1.8AI score0.03463EPSS
Exploits2
CNVD
CNVD
added 2019/01/04 12:0 a.m.3 views

Unspecified vulnerability in Jinjava

Jinjava is a Java-based Jinja template engine . A security vulnerability exists in Jinjava versions prior to 2.4.6. No details of the vulnerability are provided at this time...

5.3CVSS9.2AI score0.01829EPSS
Exploits0References1
Fedora
Fedora
added 2018/12/03 2:41 a.m.10 views

[SECURITY] Fedora 29 Update: php-Smarty2-2.6.31-2.fc29

Smarty is a template engine for PHP, facilitating the separation of presentation HTML/CSS from application logic. This implies that PHP code is application logic, and is separated from the presentation...

1.5AI score
Exploits0
Fedora
Fedora
added 2018/12/03 1:39 a.m.9 views

[SECURITY] Fedora 28 Update: php-Smarty2-2.6.31-2.fc28

Smarty is a template engine for PHP, facilitating the separation of presentation HTML/CSS from application logic. This implies that PHP code is application logic, and is separated from the presentation...

1.5AI score
Exploits0
Rows per page
Query Builder