exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 10

CVE-2018-19787

около 7 лет назад

An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in the lxml.html.clean module does not remove javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks, as demonstrated by "j a v a s c r i p t:" in Internet Explorer. This is a similar issue to CVE-2014-3146.

CVSS3: 6.1

EPSS: Низкий

CVE-2018-19787

больше 7 лет назад

An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in the lxml.html.clean module does not remove javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks, as demonstrated by "j a v a s c r i p t:" in Internet Explorer. This is a similar issue to CVE-2014-3146.

CVSS3: 4.7

EPSS: Низкий

CVE-2018-19787

около 7 лет назад

An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in the lxml.html.clean module does not remove javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks, as demonstrated by "j a v a s c r i p t:" in Internet Explorer. This is a similar issue to CVE-2014-3146.

CVSS3: 6.1

EPSS: Низкий

CVE-2018-19787

больше 4 лет назад

CVSS3: 6.1

EPSS: Низкий

CVE-2018-19787

около 7 лет назад

An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in th ...

CVSS3: 6.1

EPSS: Низкий

GHSA-xp26-p53h-6h2p

больше 3 лет назад

Improper Neutralization of Input During Web Page Generation in LXML

CVSS3: 6.1

EPSS: Низкий

BDU:2019-02732

около 7 лет назад

Уязвимость компонента lxml/html/clean.py модуля lxml.html.clean библиотеки для обработки разметки XML и HTML Lxml, позволяющая нарушителю осуществлять межсайтовые сценарные атаки

CVSS3: 6.1

EPSS: Низкий

openSUSE-SU-2022:0803-1

почти 4 года назад

Security update for python-lxml

EPSS: Низкий

SUSE-SU-2022:0895-1

почти 4 года назад

Security update for python-lxml

EPSS: Низкий

SUSE-SU-2022:0803-1

почти 4 года назад

Security update for python-lxml

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2018-19787 An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in the lxml.html.clean module does not remove javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks, as demonstrated by "j a v a s c r i p t:" in Internet Explorer. This is a similar issue to CVE-2014-3146.	CVSS3: 6.1	1% Низкий	около 7 лет назад
CVE-2018-19787 An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in the lxml.html.clean module does not remove javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks, as demonstrated by "j a v a s c r i p t:" in Internet Explorer. This is a similar issue to CVE-2014-3146.	CVSS3: 4.7	1% Низкий	больше 7 лет назад
CVE-2018-19787 An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in the lxml.html.clean module does not remove javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks, as demonstrated by "j a v a s c r i p t:" in Internet Explorer. This is a similar issue to CVE-2014-3146.	CVSS3: 6.1	1% Низкий	около 7 лет назад
CVE-2018-19787	CVSS3: 6.1	1% Низкий	больше 4 лет назад
CVE-2018-19787 An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in th ...	CVSS3: 6.1	1% Низкий	около 7 лет назад
GHSA-xp26-p53h-6h2p Improper Neutralization of Input During Web Page Generation in LXML	CVSS3: 6.1	1% Низкий	больше 3 лет назад
BDU:2019-02732 Уязвимость компонента lxml/html/clean.py модуля lxml.html.clean библиотеки для обработки разметки XML и HTML Lxml, позволяющая нарушителю осуществлять межсайтовые сценарные атаки	CVSS3: 6.1	1% Низкий	около 7 лет назад
openSUSE-SU-2022:0803-1 Security update for python-lxml			почти 4 года назад
SUSE-SU-2022:0895-1 Security update for python-lxml			почти 4 года назад
SUSE-SU-2022:0803-1 Security update for python-lxml			почти 4 года назад

Уязвимостей на страницу