Lucene search
K

13 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.4 views

Astra Linux – Vulnerability in Python 3.11

When folding a long comment within an email header that contains only printable characters, the parentheses will not be preserved. This can be exploited to inject headers into email messages where the addresses are controlled by users and not sanitized...

5.7CVSS7AI score0.0055EPSS
Exploits0References3
NVD
NVD
added 2026/03/21 4:16 a.m.3 views

CVE-2026-1313

The MimeTypes Link Icons plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.2.20. This is due to the plugin making outbound HTTP requests to user-controlled URLs without proper validation when the "Show file size" option is enabled. This make...

8.3CVSS0.00316EPSS
Exploits0References3
OSV
OSV
added 2026/01/26 2:49 p.m.4 views

BIT-PYTHON-MIN-2025-11468 Folding email comments of unfoldable characters doesn't preserve parenthesis

When folding a long comment in an email header containing exclusively unfoldable characters, the parenthesis would not be preserved. This could be used for injecting headers into email messages where addresses are user-controlled and not sanitized...

5.7CVSS5.9AI score0.0055EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2026/01/21 8:48 p.m.4 views

CVE-2025-11468

Missing character filtering has been discovered in Python. When folding a long comment in an email header containing exclusively unfoldable characters, the parenthesis would not be preserved. This could be used for injecting headers into email messages where addresses are user-controlled and not...

5.7CVSS5.6AI score0.0055EPSS
Exploits0References6
EUVD
EUVD
added 2026/01/21 12:31 a.m.6 views

EUVD-2025-206306

When folding a long comment in an email header containing exclusively unfoldable characters, the parenthesis would not be preserved. This could be used for injecting headers into email messages where addresses are user-controlled and not sanitized...

5.7CVSS5.4AI score0.0055EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/01/20 10:15 p.m.4 views

CVE-2025-11468

When folding a long comment in an email header containing exclusively unfoldable characters, the parenthesis would not be preserved. This could be used for injecting headers into email messages where addresses are user-controlled and not sanitized...

5.7CVSS5.8AI score0.0055EPSS
Exploits0References6
OSV
OSV
added 2026/01/20 10:15 p.m.3 views

UBUNTU-CVE-2025-11468

When folding a long comment in an email header containing exclusively unfoldable characters, the parenthesis would not be preserved. This could be used for injecting headers into email messages where addresses are user-controlled and not sanitized...

5.7CVSS5.8AI score0.0055EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/01/20 9:9 p.m.22 views

CVE-2025-11468 Folding email comments of unfoldable characters doesn't preserve parenthesis

When folding a long comment in an email header containing exclusively unfoldable characters, the parenthesis would not be preserved. This could be used for injecting headers into email messages where addresses are user-controlled and not sanitized...

5.7CVSS0.0055EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2026/01/20 9:9 p.m.3 views

CVE-2025-11468 Folding email comments of unfoldable characters doesn't preserve parenthesis

When folding a long comment in an email header containing exclusively unfoldable characters, the parenthesis would not be preserved. This could be used for injecting headers into email messages where addresses are user-controlled and not sanitized...

5.7CVSS5.4AI score0.0055EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/01/20 9:9 p.m.7 views

CVE-2025-11468

When folding a long comment in an email header containing exclusively unfoldable characters, the parenthesis would not be preserved. This could be used for injecting headers into email messages where addresses are user-controlled and not sanitized...

5.7CVSS5.3AI score0.0055EPSS
Exploits0References10Affected Software1
CVE
CVE
added 2026/01/20 9:9 p.m.25 views

CVE-2025-11468

CVE-2025-11468 refers to a Python vulnerability where folding a long comment in an email header that contains exclusively unfoldable characters can cause the parenthesis to be lost, enabling header injection when the addresses are user-controlled. The issue is tied to Python’s email/header handli...

5.7CVSS5.4AI score0.0055EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/01/20 12:0 a.m.5 views

CPython security vulnerabilities

CPython is a Python interpreter implemented in C language by the Python Foundation. CPython has security vulnerabilities; these vulnerabilities arise from failing to retain parentheses when folding long comments in email headers that only contain non-folding characters. This can lead to the...

5.7CVSS5.8AI score0.0055EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/01/20 12:0 a.m.12 views

PT-2026-3652

Name of the Vulnerable Software and Affected Versions Versions prior to 2025-11468 Description A flaw exists where parenthesis are not preserved when folding a long comment in an email header containing exclusively unfoldable characters. This can allow for the injection of headers into email...

7.5CVSS5.9AI score0.01525EPSS
Exploits1References143
Rows per page
Query Builder