Log inCVE-2026-41889 pgx: SQL Injection via placeholder confusion with dollar quoted string literals
10 Mei 2026 om 10:03
Information published.
Normale weergave
Ontvangen β 10 Mei 2026
β
Microsoft Security
-
Microsoft Security
- CVE-2026-41889 pgx: SQL Injection via placeholder confusion with dollar quoted string literals
-
- CVE-2026-33079 Mistune ReDoS in LINK_TITLE_RE allows denial of service with crafted Markdown titles
CVE-2026-33079 Mistune ReDoS in LINK_TITLE_RE allows denial of service with crafted Markdown titles
10 Mei 2026 om 10:03
Information published.
CVE-2026-42501 Malicious module proxy can bypass checksum database in cmd/go
10 Mei 2026 om 10:03
Information published.
CVE-2026-42499 Quadratic string concatenation in consumePhrase in net/mail
10 Mei 2026 om 10:03
Information published.
-
- CVE-2026-39836 Panic in Dial and LookupPort when handling NUL byte on Windows in net
CVE-2026-39836 Panic in Dial and LookupPort when handling NUL byte on Windows in net
10 Mei 2026 om 10:03
Information published.
CVE-2026-39826 Escaper bypass leads to XSS in html/template
10 Mei 2026 om 10:02
Information published.
-
- CVE-2026-39825 ReverseProxy forwards queries with more than urlmaxqueryparams parameters in net/http/httputil
CVE-2026-39825 ReverseProxy forwards queries with more than urlmaxqueryparams parameters in net/http/httputil
10 Mei 2026 om 10:02
Information published.
CVE-2026-39823 Bypass of meta content URL escaping causes XSS in html/template
10 Mei 2026 om 10:02
Information published.
CVE-2026-39820 Quadratic string concatentation in consumeComment in net/mail
10 Mei 2026 om 10:02
Information published.
-
- CVE-2026-39819 Invoking "go bug" follows symlinks in predictable temporary filenames in cmd/go
CVE-2026-39819 Invoking "go bug" follows symlinks in predictable temporary filenames in cmd/go
10 Mei 2026 om 10:02
Information published.
CVE-2026-39817 Invoking "go tool pack" does not sanitize output paths in cmd/go
10 Mei 2026 om 10:02
Information published.
-
- CVE-2026-33814 Infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE in net/http/internal/http2 in golang.org/x/net
CVE-2026-33814 Infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE in net/http/internal/http2 in golang.org/x/net
10 Mei 2026 om 10:02
Information published.
CVE-2026-33811 Crash when handling long CNAME response in net
10 Mei 2026 om 10:01
Information published.
CVE-2026-44656 Vim: OS Command Injection via 'path' completion
10 Mei 2026 om 10:01
Information published.
CVE-2026-45130 Vim: Heap Buffer Overflow in spell file loading
10 Mei 2026 om 10:01
Information published.
CVE-2026-6666 PgBouncer crash in kill_pool_logins_server_error
10 Mei 2026 om 10:01
Information published.
CVE-2026-6667 PgBouncer missing authorization check in KILL_CLIENT admin command
10 Mei 2026 om 10:01
Information published.
CVE-2026-6665 PgBouncer buffer overflow in SCRAM
10 Mei 2026 om 10:01
Information published.
CVE-2026-6664 PgBouncer integer overflow in PgBouncer network packet parsing
10 Mei 2026 om 10:01
Information published.
