Vulnerabilidades em sparklemotion
18 resultadosCVE-2021-21289HIGHCommand Injection Vulnerability in MechanizeEPSS 3.5%CVE-2022-24836HIGHInefficient Regular Expression Complexity in NokogiriEPSS 3.4%CVE-2022-29181HIGHImproper Handling of Unexpected Data Type in NokogiriEPSS 2.9%CVE-2022-24839HIGHUncontrolled Resource Consumption in org.cyberneko.html (nokogiri fork)EPSS 2.0%CVE-2022-23476HIGHUnchecked return value from xmlTextReaderExpand in NokogiriEPSS 1.7%CVE-2021-41098HIGHImproper Restriction of XML External Entity Reference (XXE) in Nokogiri on JRubyEPSS 1.6%CVE-2022-31033MEDIUMAuthorization header leak in rubygem MechanizeEPSS 1.4%CVE-2020-26247LOWXXE in NokogiriEPSS 1.3%CVE-2026-57434LOWNokogiri: Null Pointer Dereference calling methods on uninitialized wrapper classesEPSS 0.3%CVE-2026-57437LOWNokogiri: Possible Use-After-Free when directly using `NokogirI::XML::XPathContext` beyond document lifetimeEPSS 0.3%CVE-2026-57235MEDIUMNokogiri: Possible Out-of-Bounds Read in `Nokogiri::XML::NodeSet#[]`EPSS 0.3%CVE-2026-57236LOWNokogiri: Possible Use-After-Free when `Nokogiri::XML::Document#encoding=` raises an exceptionEPSS 0.3%CVE-2026-57435LOWNokogiri: Possible Use-After-Free when setting an attribute value via `Nokogiri::XML::Attr#value=` or `#content=`EPSS 0.3%CVE-2026-57436LOWNokogiri: Possible Use-After-Free when setting `Document#root=` to an invalid node typeEPSS 0.3%CVE-2026-57234LOWNokogiri: XML::Schema on JRuby allows network requests when NONET is set, bypassing CVE-2020-26247EPSS 0.2%CVE-2025-6490MEDIUMsparklemotion nokogiri hashmap.c hashmap_set_with_hash heap-based overflowEPSS 0.1%CVE-2025-6494MEDIUMsparklemotion nokogiri hashmap.c hashmap_get_with_hash heap-based overflowEPSS 0.1%CVE-2026-57438LOWNokogiri: Possible Use-After-Free in XInclude ProcessingEPSS 0.1%