Lucene search
K

792 matches found

OSV
OSV
added 2026/04/16 9:8 p.m.4 views

GHSA-4FXQ-2X3X-6XQX zrok: Reflected XSS in GitHub OAuth callback via unsanitized refreshInterval error rendering

Summary The proxyUi template engine uses Go's text/template which performs no HTML escaping instead of html/template. The GitHub OAuth callback handlers in both publicProxy and dynamicProxy embed the attacker-controlled refreshInterval query parameter verbatim into an error message when...

6.1CVSS5.9AI score0.00209EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/16 12:0 a.m.12 views

PT-2026-33378

Name of the Vulnerable Software and Affected Versions zrok versions prior to 2.0.1 Description The proxyUi template engine utilizes Go's text/template, which does not perform HTML escaping, rather than html/template. The GitHub OAuth callback handlers in 'publicProxy' and 'dynamicProxy' embed the...

6.1CVSS6AI score0.00209EPSS
Exploits0References7
Snyk
Snyk
added 2026/04/15 7:46 p.m.3 views

Template Injection

Overview Affected versions of this package are vulnerable to Template Injection due to the TemplateEngine's improper invalidation of certain syntactic patterns during expression evaluation. An attacker can inject into sensitive objects to execute unauthorized actions. Remediation Upgrade...

9.2CVSS5.9AI score0.00776EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/15 7:46 p.m.4 views

Template Injection

Overview Affected versions of this package are vulnerable to Template Injection due to the TemplateEngine's improper restriction of accessible object scope during expression evaluation. An attacker can inject into sensitive objects to execute unauthorized actions. Remediation Upgrade...

9.2CVSS5.8AI score0.00862EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/15 7:46 p.m.3 views

Template Injection

Overview Affected versions of this package are vulnerable to Template Injection due to the TemplateEngine's improper restriction of accessible object scope during expression evaluation. An attacker can inject into sensitive objects to execute unauthorized actions. Remediation Upgrade...

9.2CVSS5.8AI score0.00862EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/14 11:13 p.m.3 views

Improper Neutralization of Special Elements Used in a Template Engine

Overview giskard-checks is an Add your description here Affected versions of this package are vulnerable to Improper Neutralization of Special Elements Used in a Template Engine via the rule parameter in the ConformityCheck class. An attacker can execute arbitrary code by supplying malicious...

7.8CVSS6.2AI score0.00144EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/14 9:30 p.m.5 views

CVE-2026-34984

A flaw was found in External Secrets Operator. An attacker with the ability to create or update templated ExternalSecret resources can exploit a vulnerability in the v2 template engine. This flaw allows the attacker to use the getHostByName function to perform controller-side DNS lookups, leading...

7.1CVSS5.7AI score0.00262EPSS
Exploits0References6
Snyk
Snyk
added 2026/04/14 4:4 a.m.9 views

Information Exposure

Overview Affected versions of this package are vulnerable to Information Exposure via the getHostByName function in the v2 template engine. An attacker can cause sensitive data to be disclosed by crafting or updating templated resources that trigger DNS queries containing secret-derived values fr...

7.1CVSS5.7AI score0.00262EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/14 1:48 a.m.33 views

CVE-2026-34984 External Secrets Operator has DNS exfiltration via getHostByName in its v2 template engine

External Secrets Operator reads information from a third-party service and automatically injects the values as Kubernetes Secrets. Versions 2.2.0 and below contain a vulnerability in runtime/template/v2/template.go where the v2 template engine removes env and expandenv from Sprig's TxtFuncMap but...

7.1CVSS0.00262EPSS
Exploits0References3
CVE
CVE
added 2026/04/14 1:48 a.m.21 views

CVE-2026-34984

Summary: External Secrets Operator (ESO) versions 2.2.0 and earlier are vulnerable due to the v2 template engine’s getHostByName exposure in runtime/template/v2/template.go. An attacker who can create or update templated ExternalSecret resources can trigger controller-side DNS lookups using secre...

7.1CVSS5.7AI score0.00262EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/04/14 12:0 a.m.7 views

External Secrets 信息泄露漏洞

External Secrets is an open-source Kubernetes-related application developed by External Secrets. Versions of External Secrets 2.2.0 and earlier contain a vulnerability related to information leakage. This vulnerability stems from the v2 template engine not removing the getHostByName function, whi...

7.1CVSS5.8AI score0.00262EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/04/13 4:36 p.m.8 views

External Secrets Operator has DNS-based secret exfiltration via getHostByName in External Secrets v2 template engine

Summary The v2 template engine in runtime/template/v2/template.go imports Sprig’s TxtFuncMap and removes env and expandenv, but leaves getHostByName available to user-controlled templates. Because ESO executes templates inside the controller process, an attacker who can create or update templated...

7.1CVSS5.8AI score0.00262EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/04/13 4:36 p.m.4 views

GHSA-R2PG-R6H7-CRF3 External Secrets Operator has DNS-based secret exfiltration via getHostByName in External Secrets v2 template engine

Summary The v2 template engine in runtime/template/v2/template.go imports Sprig’s TxtFuncMap and removes env and expandenv, but leaves getHostByName available to user-controlled templates. Because ESO executes templates inside the controller process, an attacker who can create or update templated...

7.1CVSS5.8AI score0.00262EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/09 10:45 p.m.23 views

CVE-2026-5987 Sanluan PublicCMS FreeMarker Template AbstractFreemarkerView.java AbstractFreemarkerView.doRender special elements used in a template engine

A security vulnerability has been detected in Sanluan PublicCMS up to 6.202506.d. This affects the function AbstractFreemarkerView.doRender of the file publiccms-parent/publiccms-core/src/main/java/com/publiccms/common/base/AbstractFreemarkerView.java of the component FreeMarker Template Handler...

5.8CVSS0.00239EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.10 views

PT-2026-31823

A security vulnerability has been detected in Sanluan PublicCMS up to 6.202506.d. This affects the function AbstractFreemarkerView.doRender of the file publiccms-parent/publiccms-core/src/main/java/com/publiccms/common/base/AbstractFreemarkerView.java of the component FreeMarker Template Handler...

5.8CVSS5.4AI score0.00239EPSS
Exploits0References7
Snyk
Snyk
added 2026/04/08 9:51 p.m.4 views

Improper Neutralization of Special Elements Used in a Template Engine

Overview langchain-core is a Building applications with LLMs through composability Affected versions of this package are vulnerable to Improper Neutralization of Special Elements Used in a Template Engine via the template formatting. An attacker can access internal object fields or nested data by...

6.9CVSS5.8AI score0.00262EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/08 12:0 a.m.9 views

liquidjs 信息泄露漏洞

LiquidJS is a simple, expressive, secure, and compatible JavaScript template engine developed by Jun Yang. Versions of LiquidJS prior to 10.25.4 contained an information leakage vulnerability. This vulnerability stemmed from the sortnatural filter bypassing the ownPropertyOnly security option,...

7.5CVSS5.8AI score0.00403EPSS
Exploits1References4
EUVD
EUVD
added 2026/04/05 12:30 p.m.4 views

EUVD-2026-19066

A vulnerability has been found in AntaresMugisho PyBlade 0.1.8-alpha/0.1.9-alpha. The affected element is the function issafeast of the file sandbox.py of the component AST Validation. Such manipulation leads to improper neutralization of special elements used in a template engine. The attack may...

6.5CVSS6AI score0.00314EPSS
Exploits0References7
Snyk
Snyk
added 2026/04/05 12:30 p.m.6 views

Incomplete Filtering of Special Elements

Overview PyBlade is a PyBlade is a lightweight template engine for Python, initially designed for Django. Inspired by Laravel's Blade and Livewire, it simplifies dynamic template creation with developer-friendly @-based directives and component support, all while prioritizing security. Affected...

8.8CVSS6.9AI score0.00314EPSS
Exploits0References2
NVD
NVD
added 2026/04/05 11:16 a.m.4 views

CVE-2026-5559

A vulnerability has been found in AntaresMugisho PyBlade 0.1.8-alpha/0.1.9-alpha. The affected element is the function issafeast of the file sandbox.py of the component AST Validation. Such manipulation leads to improper neutralization of special elements used in a template engine. The attack may...

6.5CVSS0.00314EPSS
Exploits0References6
Rows per page
Query Builder