Количество 75
Количество 75
openSUSE-SU-2021:0270-1
Security update for python
SUSE-SU-2021:0529-1
Security update for python3
SUSE-SU-2021:0432-1
Security update for python
SUSE-SU-2021:0428-1
Security update for python36
SUSE-SU-2021:0355-1
Security update for python
CVE-2020-27783
A XSS vulnerability was discovered in python-lxml's clean module. The module's parser didn't properly imitate browsers, which caused different behaviors between the sanitizer and the user's page. A remote attacker could exploit this flaw to run arbitrary HTML/JS code.
CVE-2020-27783
A XSS vulnerability was discovered in python-lxml's clean module. The module's parser didn't properly imitate browsers, which caused different behaviors between the sanitizer and the user's page. A remote attacker could exploit this flaw to run arbitrary HTML/JS code.
CVE-2020-27783
A XSS vulnerability was discovered in python-lxml's clean module. The module's parser didn't properly imitate browsers, which caused different behaviors between the sanitizer and the user's page. A remote attacker could exploit this flaw to run arbitrary HTML/JS code.
CVE-2020-27783
CVE-2020-27783
A XSS vulnerability was discovered in python-lxml's clean module. The ...
SUSE-SU-2022:3461-1
Security update for python3-lxml
SUSE-SU-2022:3460-1
Security update for python3-lxml
GHSA-pgww-xf46-h92r
lxml vulnerable to Cross-site Scripting
ELSA-2021-1898
ELSA-2021-1898: python-lxml security update (MODERATE)
BDU:2021-03620
Уязвимость модуля clean библиотеки для обработки разметки XML и HTML Lxml, связанная с непринятием мер по защите структуры веб-страницы, позволяющая нарушителю оказать воздействие на целостность защищаемой информации
SUSE-SU-2022:3836-1
Security update for python-lxml
CVE-2020-26137
urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest(). NOTE: this is similar to CVE-2020-26116.
CVE-2020-26137
urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest(). NOTE: this is similar to CVE-2020-26116.
CVE-2020-26137
urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest(). NOTE: this is similar to CVE-2020-26116.
CVE-2020-26137
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | openSUSE-SU-2021:0270-1 Security update for python | больше 4 лет назад | ||
| SUSE-SU-2021:0529-1 Security update for python3 | больше 4 лет назад | ||
| SUSE-SU-2021:0432-1 Security update for python | больше 4 лет назад | ||
| SUSE-SU-2021:0428-1 Security update for python36 | больше 4 лет назад | ||
| SUSE-SU-2021:0355-1 Security update for python | больше 4 лет назад | ||
 | CVE-2020-27783 A XSS vulnerability was discovered in python-lxml's clean module. The module's parser didn't properly imitate browsers, which caused different behaviors between the sanitizer and the user's page. A remote attacker could exploit this flaw to run arbitrary HTML/JS code. | CVSS3: 6.1 | 1% Низкий | больше 4 лет назад |
 | CVE-2020-27783 A XSS vulnerability was discovered in python-lxml's clean module. The module's parser didn't properly imitate browsers, which caused different behaviors between the sanitizer and the user's page. A remote attacker could exploit this flaw to run arbitrary HTML/JS code. | CVSS3: 6.1 | 1% Низкий | больше 4 лет назад |
 | CVE-2020-27783 A XSS vulnerability was discovered in python-lxml's clean module. The module's parser didn't properly imitate browsers, which caused different behaviors between the sanitizer and the user's page. A remote attacker could exploit this flaw to run arbitrary HTML/JS code. | CVSS3: 6.1 | 1% Низкий | больше 4 лет назад |
 | CVSS3: 6.1 | 1% Низкий | почти 4 года назад | |
| CVE-2020-27783 A XSS vulnerability was discovered in python-lxml's clean module. The ... | CVSS3: 6.1 | 1% Низкий | больше 4 лет назад |
| SUSE-SU-2022:3461-1 Security update for python3-lxml | 1% Низкий | больше 2 лет назад | |
| SUSE-SU-2022:3460-1 Security update for python3-lxml | 1% Низкий | больше 2 лет назад | |
| GHSA-pgww-xf46-h92r lxml vulnerable to Cross-site Scripting | CVSS3: 6.1 | 1% Низкий | больше 4 лет назад |
| ELSA-2021-1898 ELSA-2021-1898: python-lxml security update (MODERATE) | около 4 лет назад | ||
 | BDU:2021-03620 Уязвимость модуля clean библиотеки для обработки разметки XML и HTML Lxml, связанная с непринятием мер по защите структуры веб-страницы, позволяющая нарушителю оказать воздействие на целостность защищаемой информации | CVSS3: 6.1 | 1% Низкий | больше 4 лет назад |
| SUSE-SU-2022:3836-1 Security update for python-lxml | больше 2 лет назад | ||
| CVE-2020-26137 urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest(). NOTE: this is similar to CVE-2020-26116. | CVSS3: 6.5 | 0% Низкий | больше 4 лет назад |
| CVE-2020-26137 urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest(). NOTE: this is similar to CVE-2020-26116. | CVSS3: 6.5 | 0% Низкий | больше 5 лет назад |
| CVE-2020-26137 urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest(). NOTE: this is similar to CVE-2020-26116. | CVSS3: 6.5 | 0% Низкий | больше 4 лет назад |
| CVSS3: 6.5 | 0% Низкий | больше 4 лет назад |
Уязвимостей на страницу