Количество 20
Количество 20
CVE-2023-39319
The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack.
CVE-2023-39319
The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack.
CVE-2023-39319
The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack.
CVE-2023-39319
Improper handling of special tags within script contexts in html/template
CVE-2023-39319
The html/template package does not apply the proper rules for handling ...
GHSA-vv9m-32rr-3g55
The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack.
BDU:2024-07763
Уязвимость пакета html/template языка программирования Go, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS)
SUSE-SU-2023:3700-1
Security update for go1.20
SUSE-SU-2023:3840-1
Security update for go1.20-openssl
ROS-20241001-02
Множественные уязвимости golang
SUSE-SU-2023:3701-1
Security update for go1.21
ELSA-2023-7766
ELSA-2023-7766: containernetworking-plugins security update (MODERATE)
ELSA-2023-7765
ELSA-2023-7765: podman security update (MODERATE)
ELSA-2023-7764
ELSA-2023-7764: buildah security update (MODERATE)
ELSA-2023-7762
ELSA-2023-7762: skopeo security update (MODERATE)
RLSA-2024:0121
Moderate: container-tools:4.0 security update
ELSA-2024-0121
ELSA-2024-0121: container-tools:4.0 security update (MODERATE)
SUSE-SU-2023:4469-1
Security update for go1.21-openssl
RLSA-2024:2988
Moderate: container-tools:rhel8 security update
ELSA-2024-2988
ELSA-2024-2988: container-tools:ol8 security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-39319 The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack. | CVSS3: 6.1 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-39319 The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack. | CVSS3: 6.1 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-39319 The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack. | CVSS3: 6.1 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-39319 Improper handling of special tags within script contexts in html/template | CVSS3: 6.1 | 0% Низкий | 3 месяца назад |
| CVE-2023-39319 The html/template package does not apply the proper rules for handling ... | CVSS3: 6.1 | 0% Низкий | больше 2 лет назад |
| GHSA-vv9m-32rr-3g55 The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack. | CVSS3: 6.1 | 0% Низкий | больше 2 лет назад |
 | BDU:2024-07763 Уязвимость пакета html/template языка программирования Go, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS) | CVSS3: 6.1 | 0% Низкий | больше 2 лет назад |
 | SUSE-SU-2023:3700-1 Security update for go1.20 | около 2 лет назад | ||
| SUSE-SU-2023:3840-1 Security update for go1.20-openssl | около 2 лет назад | ||
 | ROS-20241001-02 Множественные уязвимости golang | CVSS3: 8.8 | около 1 года назад | |
| SUSE-SU-2023:3701-1 Security update for go1.21 | около 2 лет назад | ||
| ELSA-2023-7766 ELSA-2023-7766: containernetworking-plugins security update (MODERATE) | около 2 лет назад | ||
| ELSA-2023-7765 ELSA-2023-7765: podman security update (MODERATE) | почти 2 года назад | ||
| ELSA-2023-7764 ELSA-2023-7764: buildah security update (MODERATE) | почти 2 года назад | ||
| ELSA-2023-7762 ELSA-2023-7762: skopeo security update (MODERATE) | около 2 лет назад | ||
 | RLSA-2024:0121 Moderate: container-tools:4.0 security update | 7 месяцев назад | ||
| ELSA-2024-0121 ELSA-2024-0121: container-tools:4.0 security update (MODERATE) | почти 2 года назад | ||
| SUSE-SU-2023:4469-1 Security update for go1.21-openssl | около 2 лет назад | ||
| RLSA-2024:2988 Moderate: container-tools:rhel8 security update | 7 месяцев назад | ||
| ELSA-2024-2988 ELSA-2024-2988: container-tools:ol8 security update (MODERATE) | больше 1 года назад |
Уязвимостей на страницу