Количество 17
Количество 17
BDU:2024-07763
Уязвимость пакета html/template языка программирования Go, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS)
CVE-2023-39319
The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack.
CVE-2023-39319
The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack.
CVE-2023-39319
The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack.
CVE-2023-39319
The html/template package does not apply the proper rules for handling ...
GHSA-vv9m-32rr-3g55
The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack.
SUSE-SU-2023:3700-1
Security update for go1.20
SUSE-SU-2023:3840-1
Security update for go1.20-openssl
ROS-20241001-02
Множественные уязвимости golang
SUSE-SU-2023:3701-1
Security update for go1.21
ELSA-2023-7766
ELSA-2023-7766: containernetworking-plugins security update (MODERATE)
ELSA-2023-7765
ELSA-2023-7765: podman security update (MODERATE)
ELSA-2023-7764
ELSA-2023-7764: buildah security update (MODERATE)
ELSA-2023-7762
ELSA-2023-7762: skopeo security update (MODERATE)
ELSA-2024-0121
ELSA-2024-0121: container-tools:4.0 security update (MODERATE)
SUSE-SU-2023:4469-1
Security update for go1.21-openssl
ELSA-2024-2988
ELSA-2024-2988: container-tools:ol8 security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2024-07763 Уязвимость пакета html/template языка программирования Go, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS) | CVSS3: 6.1 | 0% Низкий | почти 2 года назад |
 | CVE-2023-39319 The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack. | CVSS3: 6.1 | 0% Низкий | почти 2 года назад |
 | CVE-2023-39319 The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack. | CVSS3: 6.1 | 0% Низкий | почти 2 года назад |
 | CVE-2023-39319 The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack. | CVSS3: 6.1 | 0% Низкий | почти 2 года назад |
| CVE-2023-39319 The html/template package does not apply the proper rules for handling ... | CVSS3: 6.1 | 0% Низкий | почти 2 года назад |
| GHSA-vv9m-32rr-3g55 The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack. | CVSS3: 6.1 | 0% Низкий | почти 2 года назад |
 | SUSE-SU-2023:3700-1 Security update for go1.20 | почти 2 года назад | ||
| SUSE-SU-2023:3840-1 Security update for go1.20-openssl | больше 1 года назад | ||
 | ROS-20241001-02 Множественные уязвимости golang | CVSS3: 8.8 | 9 месяцев назад | |
| SUSE-SU-2023:3701-1 Security update for go1.21 | почти 2 года назад | ||
| ELSA-2023-7766 ELSA-2023-7766: containernetworking-plugins security update (MODERATE) | больше 1 года назад | ||
| ELSA-2023-7765 ELSA-2023-7765: podman security update (MODERATE) | больше 1 года назад | ||
| ELSA-2023-7764 ELSA-2023-7764: buildah security update (MODERATE) | больше 1 года назад | ||
| ELSA-2023-7762 ELSA-2023-7762: skopeo security update (MODERATE) | больше 1 года назад | ||
| ELSA-2024-0121 ELSA-2024-0121: container-tools:4.0 security update (MODERATE) | больше 1 года назад | ||
| SUSE-SU-2023:4469-1 Security update for go1.21-openssl | больше 1 года назад | ||
| ELSA-2024-2988 ELSA-2024-2988: container-tools:ol8 security update (MODERATE) | около 1 года назад |
Уязвимостей на страницу