Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Tenable Nessus
Tenable Nessusadded 2026/01/20 12:0 a.m.3 views

MiracleLinux 9 : golang-1.19.9-2.el9, go-toolset-1.19.9-1.el9 (AXSA:2023-6015:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6015:03 advisory. golang: html/template: improper handling of JavaScript whitespace CVE-2023-24540 Tenable has extracted the preceding description block directly from the...

9.8CVSS8.4AI score0.00289EPSS
Exploits0References2
EUVD
EUVDadded 2026/01/10 4:46 a.m.3 views

EUVD-2026-1877

pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible long runtimes for malformed startxref. An attacker who uses this vulnerability can craft a PDF which leads to possibly long runtimes for invalid startxref entries. When rebuilding the cross-referen...

6.9CVSS6.2AI score0.00023EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-8507

Malware in sbrugna...

9.8CVSS7.4AI score0.00045EPSS
Exploits1References9
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2019-0710

Malware in sbrugna...

7.5CVSS6.9AI score0.15334EPSS
Exploits1References159
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2022-1428

Malicious code in bioql PyPI...

5.3CVSS5.8AI score0.00491EPSS
Exploits1References12
RedhatCVE
RedhatCVEadded 2025/05/22 3:40 p.m.7 views

CVE-2020-5890

On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, and 12.1.0-12.1.5.1 and BIG-IQ 5.2.0-7.1.0, when creating a QKView, credentials for binding to LDAP servers used for remote authentication of the BIG-IP administrative interface will not fully obfuscate if they contain whitespace...

5.5CVSS7.2AI score0.00133EPSS
Exploits0References1
OSV
OSVadded 2023/05/11 4:15 p.m.1 views

DEBIAN-CVE-2023-24540

Not all valid JavaScript whitespace characters are considered to be whitespace. Templates containing whitespace characters outside of the character set "\t\n\f\r\u0020\u2028\u2029" in JavaScript contexts that also contain actions may not be properly sanitized during execution...

9.8CVSS6.3AI score0.00289EPSS
Exploits0References1
Prion
Prionadded 2022/03/03 9:15 p.m.22 views

Input validation

URI.js is a Javascript URL mutation library. Before version 1.19.9, whitespace characters are not removed from the beginning of the protocol, so URLs are not parsed properly. This issue has been patched in version 1.19.9. Removing leading whitespace from values before passing them to URI.parse ca...

5CVSS5.3AI score0.00491EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2015/01/16 4:59 p.m.7 views

CVE-2015-0220

The django.util.http.issafeurl function in Django before 1.4.18, 1.6.x before 1.6.10, and 1.7.x before 1.7.3 does not properly handle leading whitespaces, which allows remote attackers to conduct cross-site scripting XSS attacks via a crafted URL, related to redirect URLs, as demonstrated by a...

5.3AI score
Exploits0References13
securityvulns
securityvulnsadded 2004/09/13 12:0 a.m.31 views

[Full-Disclosure] Corsaire Security Advisory - Multiple vendor MIME field whitespace issue

-- Corsaire Security Advisory -- Title: Multiple vendor MIME field whitespace issue Date: 04.08.03 Application: various Environment: various Author: Martin O'Neal [email protected] Audience: General distribution Reference: c030804-003 -- Scope -- The aim of this document is to clearly...

7.5CVSS6AI score0.00341EPSS
Exploits0
Rows per page
Query Builder