Lucene search
K

4 matches found

OSV
OSV
added 2026/03/12 8:57 p.m.11 views

GO-2026-4679 Traefik: kubernetes gateway rule injection via unescaped backticks in HTTPRoute match values in github.com/traefik/traefik

Traefik: kubernetes gateway rule injection via unescaped backticks in HTTPRoute match values in github.com/traefik/traefik...

6.5CVSS5.8AI score0.00277EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/11 2:49 p.m.4 views

EUVD-2026-11201

Traefik: kubernetes gateway rule injection via unescaped backticks in HTTPRoute match values...

6.1CVSS5.8AI score0.00277EPSS
Exploits0References2
OSV
OSV
added 2026/02/17 4:46 p.m.9 views

GHSA-3HCM-GGVF-RCH5 OpenClaw has an exec allowlist bypass via command substitution/backticks inside double quotes

Summary Exec approvals allowlist bypass via command substitution/backticks inside double quotes. Affected Packages / Versions - Package: openclaw npm - Affected: = 2026.2.2 Impact Only affects setups that explicitly enable the optional exec approvals allowlist feature. Default installs are...

9.8CVSS5.5AI score0.00476EPSS
Exploits0References6
OSV
OSV
added 2025/01/13 4:57 p.m.2 views

GHSA-VH22-6C6H-RM8Q jte's HTML templates containing Javascript template strings are subject to XSS

Summary Jte HTML templates with script tags or script attributes that include a Javascript template string backticks are subject to XSS. Details The javaScriptBlock and javaScriptAttribute methods in the Escape class source do not escape backticks, which are used for Javascript template strings...

6.1CVSS5.9AI score0.00285EPSS
Exploits0References6
Rows per page
Query Builder