Lucene search
+L

115 matches found

Microsoft CVE
Microsoft CVE
added 2026/06/27 8:6 a.m.4 views

xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSystemId.

...

6.9CVSS5.8AI score0.0011EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:6 a.m.6 views

xmlwf in libexpat before 2.8.2 has an integer overflow for the output filename when -d outputDir is used.

...

6.5CVSS5.8AI score0.00098EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:5 a.m.20 views

libexpat before 2.8.2 has an integer overflow in addBinding.

...

6.9CVSS5.8AI score0.00102EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/22 7:32 p.m.9 views

CVE-2026-56412

A flaw was found in libexpat. This vulnerability, present in versions before 2.8.2, stems from improper handling of XML CDATA sections, where the library fails to adequately track the depth of handler calls. This can result in a 'use-after-free' error, a type of memory corruption that could allow...

5.9CVSS5.8AI score0.00105EPSS
Exploits0References4
OSV
OSV
added 2026/06/21 5:16 p.m.3 views

ALPINE-CVE-2026-56412

libexpat before 2.8.2 does not consider XMLTOKDATACHARS in doCdataSection and thus lacks handler call depth tracking for various calls from within handlers in cases of a policy violation. Thus, a use-after-free can occur. NOTE: this issue exists because of an incomplete fix for CVE-2026-50219...

5.9CVSS5.8AI score0.00105EPSS
Exploits0References1
NVD
NVD
added 2026/06/21 4:16 p.m.13 views

CVE-2026-56410

xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSystemId...

6.9CVSS0.0011EPSS
Exploits0References1
OSV
OSV
added 2026/06/21 4:16 p.m.4 views

ALPINE-CVE-2026-56409

xmlwf in libexpat before 2.8.2 has an integer overflow for the output filename when -d outputDir is used...

6.5CVSS5.8AI score0.00098EPSS
Exploits0References1
NVD
NVD
added 2026/06/21 4:16 p.m.13 views

CVE-2026-56404

libexpat before 2.8.2 has an integer overflow in addBinding...

6.9CVSS0.00102EPSS
Exploits0References1
OSV
OSV
added 2026/06/21 4:16 p.m.6 views

ALPINE-CVE-2026-56406

libexpat before 2.8.2 has an integer overflow in XMLParseBuffer because it lacked a check that was present in XMLParse...

6.9CVSS5.8AI score0.00102EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/06/21 3:52 p.m.9 views

CVE-2026-56409

xmlwf in libexpat before 2.8.2 has an integer overflow for the output filename when -d outputDir is used...

6.5CVSS5.8AI score0.00098EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/06/21 3:49 p.m.5 views

CVE-2026-56407

libexpat before 2.8.2 has an integer overflow in doProlog that is related to storeEntityValue and entity textLen...

6.9CVSS5.9AI score0.00102EPSS
Exploits0References2
CVE
CVE
added 2026/06/21 3:47 p.m.25 views

CVE-2026-56405

The connected sources specify a vulnerability in libexpat up to version 2.8.2, caused by an integer overflow in getAttributeId. The CVE entry lists this as CVE-2026-56405 with a CVSS v3.1 base score of 6.9 (Medium) and a Local attack vector, requiring high attack complexity, no privileges, and no...

6.9CVSS5.9AI score0.00102EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/21 3:45 p.m.11 views

CVE-2026-56404

libexpat before 2.8.2 has an integer overflow in addBinding...

6.9CVSS5.9AI score0.00102EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/21 3:43 p.m.6 views

CVE-2026-56403

libexpat before 2.8.2 has an integer overflow in storeAtts...

6.9CVSS5.9AI score0.00102EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/21 12:0 a.m.19 views

PT-2026-51244

Name of the Vulnerable Software and Affected Versions libexpat versions prior to 2.8.2 Description An integer overflow exists in the copyString function. An integer overflow occurs when an arithmetic operation attempts to create a numeric value that is outside of the range that can be represented...

6.9CVSS5.8AI score0.00102EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/21 12:0 a.m.15 views

PT-2026-51242

Name of the Vulnerable Software and Affected Versions libexpat versions prior to 2.8.2 Description An integer overflow occurs in the XML ParseBuffer function because it lacks a specific check that is implemented in the XML Parse function. Recommendations Update to version 2.8.2 or later...

6.9CVSS5.8AI score0.00102EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/06/21 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-56407

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libexpat before 2.8.2 has an integer overflow in doProlog that is related to storeEntityValue and entity textLen. CVE-2026-56407 Note that Nessus relies on the...

6.9CVSS5.9AI score0.00102EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/06/05 8:2 a.m.3 views

libexpat before 2.8.2 lacks handler call depth tracking for calls to XML_GetBuffer, XML_Parse, XML_ParseBuffer, XML_ParserFree, or XML_ParserReset from within handlers in cases of a policy violation. Thus, a use-after-free can occur,

...

5.9CVSS5.8AI score0.00218EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.22 views

PT-2026-46147

Name of the Vulnerable Software and Affected Versions libexpat versions prior to 2.8.2 Description The software lacks handler call depth tracking when specific functions are called from within handlers during a policy violation. This can lead to a use-after-free condition, which occurs when a...

5.9CVSS5.2AI score0.00218EPSS
Exploits0References21
NVD
NVD
added 2026/05/28 8:16 a.m.16 views

CVE-2026-7052

The HT Contact Form – Drag & Drop Form Builder for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'fileupload' parameter in all versions up to, and including, 2.8.2 due to insufficient input sanitization and output escaping. This makes it possible for...

7.2CVSS0.00292EPSS
Exploits0References12
Rows per page
Query Builder