Количество 20
Количество 20
CVE-2023-39319
The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack.
CVE-2023-39319
The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack.
CVE-2023-39319
The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack.
CVE-2023-39319
Improper handling of special tags within script contexts in html/template
CVE-2023-39319
The html/template package does not apply the proper rules for handling ...
GHSA-vv9m-32rr-3g55
The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack.
BDU:2024-07763
Уязвимость пакета html/template языка программирования Go, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS)
SUSE-SU-2023:3700-1
Security update for go1.20
SUSE-SU-2023:3840-1
Security update for go1.20-openssl
SUSE-SU-2023:3701-1
Security update for go1.21
ELSA-2023-7766
ELSA-2023-7766: containernetworking-plugins security update (MODERATE)
ELSA-2023-7765
ELSA-2023-7765: podman security update (MODERATE)
ELSA-2023-7764
ELSA-2023-7764: buildah security update (MODERATE)
ELSA-2023-7762
ELSA-2023-7762: skopeo security update (MODERATE)
ROS-20241001-02
Множественные уязвимости golang
RLSA-2024:0121
Moderate: container-tools:4.0 security update
ELSA-2024-0121
ELSA-2024-0121: container-tools:4.0 security update (MODERATE)
SUSE-SU-2023:4469-1
Security update for go1.21-openssl
RLSA-2024:2988
Moderate: container-tools:rhel8 security update
ELSA-2024-2988
ELSA-2024-2988: container-tools:ol8 security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-39319 The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack. | CVSS3: 6.1 | 1% Низкий | почти 3 года назад |
 | CVE-2023-39319 The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack. | CVSS3: 6.1 | 1% Низкий | почти 3 года назад |
 | CVE-2023-39319 The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack. | CVSS3: 6.1 | 1% Низкий | почти 3 года назад |
 | CVE-2023-39319 Improper handling of special tags within script contexts in html/template | CVSS3: 6.1 | 1% Низкий | 10 месяцев назад |
| CVE-2023-39319 The html/template package does not apply the proper rules for handling ... | CVSS3: 6.1 | 1% Низкий | почти 3 года назад |
| GHSA-vv9m-32rr-3g55 The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack. | CVSS3: 6.1 | 1% Низкий | почти 3 года назад |
 | BDU:2024-07763 Уязвимость пакета html/template языка программирования Go, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS) | CVSS3: 6.1 | 1% Низкий | почти 3 года назад |
 | SUSE-SU-2023:3700-1 Security update for go1.20 | почти 3 года назад | ||
| SUSE-SU-2023:3840-1 Security update for go1.20-openssl | почти 3 года назад | ||
| SUSE-SU-2023:3701-1 Security update for go1.21 | почти 3 года назад | ||
| ELSA-2023-7766 ELSA-2023-7766: containernetworking-plugins security update (MODERATE) | больше 2 лет назад | ||
| ELSA-2023-7765 ELSA-2023-7765: podman security update (MODERATE) | больше 2 лет назад | ||
| ELSA-2023-7764 ELSA-2023-7764: buildah security update (MODERATE) | больше 2 лет назад | ||
| ELSA-2023-7762 ELSA-2023-7762: skopeo security update (MODERATE) | больше 2 лет назад | ||
 | ROS-20241001-02 Множественные уязвимости golang | CVSS3: 8.8 | больше 1 года назад | |
 | RLSA-2024:0121 Moderate: container-tools:4.0 security update | около 1 года назад | ||
| ELSA-2024-0121 ELSA-2024-0121: container-tools:4.0 security update (MODERATE) | больше 2 лет назад | ||
| SUSE-SU-2023:4469-1 Security update for go1.21-openssl | больше 2 лет назад | ||
| RLSA-2024:2988 Moderate: container-tools:rhel8 security update | около 1 года назад | ||
| ELSA-2024-2988 ELSA-2024-2988: container-tools:ol8 security update (MODERATE) | около 2 лет назад |
Уязвимостей на страницу