Количество 20
Количество 20
CVE-2023-39318
The html/template package does not properly handle HTML-like "" comment tokens, nor hashbang "#!" comment tokens, in <script> contexts. This may cause the template parser to improperly interpret the contents of <script> contexts, causing actions to be improperly escaped. This may be leveraged to perform an XSS attack.
CVE-2023-39318
The html/template package does not properly handle HTML-like "" comment tokens, nor hashbang "#!" comment tokens, in <script> contexts. This may cause the template parser to improperly interpret the contents of <script> contexts, causing actions to be improperly escaped. This may be leveraged to perform an XSS attack.
CVE-2023-39318
The html/template package does not properly handle HTML-like "" comment tokens, nor hashbang "#!" comment tokens, in <script> contexts. This may cause the template parser to improperly interpret the contents of <script> contexts, causing actions to be improperly escaped. This may be leveraged to perform an XSS attack.
CVE-2023-39318
Improper handling of HTML-like comments in script contexts in html/template
CVE-2023-39318
The html/template package does not properly handle HTML-like "" commen ...
GHSA-vq7j-gx56-rxjh
The html/template package does not properly handle HTML-like "" comment tokens, nor hashbang "#!" comment tokens, in <script> contexts. This may cause the template parser to improperly interpret the contents of <script> contexts, causing actions to be improperly escaped. This may be leveraged to perform an XSS attack.
BDU:2024-07762
Уязвимость пакета html/template языка программирования Go, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS)
SUSE-SU-2023:3700-1
Security update for go1.20
SUSE-SU-2023:3840-1
Security update for go1.20-openssl
ROS-20241001-02
Множественные уязвимости golang
SUSE-SU-2023:3701-1
Security update for go1.21
ELSA-2023-7766
ELSA-2023-7766: containernetworking-plugins security update (MODERATE)
ELSA-2023-7765
ELSA-2023-7765: podman security update (MODERATE)
ELSA-2023-7764
ELSA-2023-7764: buildah security update (MODERATE)
ELSA-2023-7762
ELSA-2023-7762: skopeo security update (MODERATE)
RLSA-2024:0121
Moderate: container-tools:4.0 security update
ELSA-2024-0121
ELSA-2024-0121: container-tools:4.0 security update (MODERATE)
SUSE-SU-2023:4469-1
Security update for go1.21-openssl
RLSA-2024:2988
Moderate: container-tools:rhel8 security update
ELSA-2024-2988
ELSA-2024-2988: container-tools:ol8 security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-39318 The html/template package does not properly handle HTML-like "" comment tokens, nor hashbang "#!" comment tokens, in <script> contexts. This may cause the template parser to improperly interpret the contents of <script> contexts, causing actions to be improperly escaped. This may be leveraged to perform an XSS attack. | CVSS3: 6.1 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-39318 The html/template package does not properly handle HTML-like "" comment tokens, nor hashbang "#!" comment tokens, in <script> contexts. This may cause the template parser to improperly interpret the contents of <script> contexts, causing actions to be improperly escaped. This may be leveraged to perform an XSS attack. | CVSS3: 6.1 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-39318 The html/template package does not properly handle HTML-like "" comment tokens, nor hashbang "#!" comment tokens, in <script> contexts. This may cause the template parser to improperly interpret the contents of <script> contexts, causing actions to be improperly escaped. This may be leveraged to perform an XSS attack. | CVSS3: 6.1 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-39318 Improper handling of HTML-like comments in script contexts in html/template | CVSS3: 6.1 | 0% Низкий | 3 месяца назад |
| CVE-2023-39318 The html/template package does not properly handle HTML-like "" commen ... | CVSS3: 6.1 | 0% Низкий | больше 2 лет назад |
| GHSA-vq7j-gx56-rxjh The html/template package does not properly handle HTML-like "" comment tokens, nor hashbang "#!" comment tokens, in <script> contexts. This may cause the template parser to improperly interpret the contents of <script> contexts, causing actions to be improperly escaped. This may be leveraged to perform an XSS attack. | CVSS3: 6.1 | 0% Низкий | больше 2 лет назад |
 | BDU:2024-07762 Уязвимость пакета html/template языка программирования Go, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS) | CVSS3: 6.1 | 0% Низкий | больше 2 лет назад |
 | SUSE-SU-2023:3700-1 Security update for go1.20 | около 2 лет назад | ||
| SUSE-SU-2023:3840-1 Security update for go1.20-openssl | около 2 лет назад | ||
 | ROS-20241001-02 Множественные уязвимости golang | CVSS3: 8.8 | около 1 года назад | |
| SUSE-SU-2023:3701-1 Security update for go1.21 | около 2 лет назад | ||
| ELSA-2023-7766 ELSA-2023-7766: containernetworking-plugins security update (MODERATE) | около 2 лет назад | ||
| ELSA-2023-7765 ELSA-2023-7765: podman security update (MODERATE) | почти 2 года назад | ||
| ELSA-2023-7764 ELSA-2023-7764: buildah security update (MODERATE) | почти 2 года назад | ||
| ELSA-2023-7762 ELSA-2023-7762: skopeo security update (MODERATE) | около 2 лет назад | ||
 | RLSA-2024:0121 Moderate: container-tools:4.0 security update | 7 месяцев назад | ||
| ELSA-2024-0121 ELSA-2024-0121: container-tools:4.0 security update (MODERATE) | почти 2 года назад | ||
| SUSE-SU-2023:4469-1 Security update for go1.21-openssl | около 2 лет назад | ||
| RLSA-2024:2988 Moderate: container-tools:rhel8 security update | 7 месяцев назад | ||
| ELSA-2024-2988 ELSA-2024-2988: container-tools:ol8 security update (MODERATE) | больше 1 года назад |
Уязвимостей на страницу