Количество 5
Количество 5
CVE-2020-11888
python-markdown2 through 2.3.8 allows XSS because element names are mishandled unless a \w+ match succeeds. For example, an attack might use elementname@ or elementname- with an onclick attribute.
CVE-2020-11888
python-markdown2 through 2.3.8 allows XSS because element names are mishandled unless a \w+ match succeeds. For example, an attack might use elementname@ or elementname- with an onclick attribute.
CVE-2020-11888
python-markdown2 through 2.3.8 allows XSS because element names are mi ...
openSUSE-SU-2020:0651-1
Security update for python-markdown2
GHSA-fv3h-8x5j-pvgq
XSS in python-markdown2
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-11888 python-markdown2 through 2.3.8 allows XSS because element names are mishandled unless a \w+ match succeeds. For example, an attack might use elementname@ or elementname- with an onclick attribute. | CVSS3: 6.1 | 1% Низкий | почти 6 лет назад |
 | CVE-2020-11888 python-markdown2 through 2.3.8 allows XSS because element names are mishandled unless a \w+ match succeeds. For example, an attack might use elementname@ or elementname- with an onclick attribute. | CVSS3: 6.1 | 1% Низкий | почти 6 лет назад |
| CVE-2020-11888 python-markdown2 through 2.3.8 allows XSS because element names are mi ... | CVSS3: 6.1 | 1% Низкий | почти 6 лет назад |
 | openSUSE-SU-2020:0651-1 Security update for python-markdown2 | 1% Низкий | больше 5 лет назад | |
| GHSA-fv3h-8x5j-pvgq XSS in python-markdown2 | CVSS3: 6.1 | 1% Низкий | почти 6 лет назад |
Уязвимостей на страницу