[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2020-27783":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":44,"aliases":59,"duplicate_of":9,"upstream":62,"downstream":63,"duplicates":102,"related":103,"reserved_at":9,"published_at":112,"modified_at":113,"state":114,"summary":115,"references_raw":123,"kevs":226,"epss":227,"epss_history":230,"metrics":490,"affected":508},"CVE-2020-27783","A XSS vulnerability was discovered in python-lxml's clean module. The module's parser didn't properly imitate browsers, which caused different behaviors between the sanitizer and the user's page. A remote attacker could exploit this flaw to run arbitrary HTML/JS code.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-79","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.","weakness","Stable","Base","High",[20,24,28,32,36,40],{"id":21,"name":22,"techniques":23},"CAPEC-209","XSS Using MIME Type Mismatch",[],{"id":25,"name":26,"techniques":27},"CAPEC-588","DOM-Based XSS",[],{"id":29,"name":30,"techniques":31},"CAPEC-591","Reflected XSS",[],{"id":33,"name":34,"techniques":35},"CAPEC-592","Stored XSS",[],{"id":37,"name":38,"techniques":39},"CAPEC-63","Cross-Site Scripting (XSS)",[],{"id":41,"name":42,"techniques":43},"CAPEC-85","AJAX Footprinting",[],[45,54],{"_key":46,"name":47,"source":48,"url":49,"maturity":50,"reliability_score":51,"verified":52,"type":9,"platforms":53,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_22699E37D63C5329","Exploit Reference (bugzilla.redhat.com)","reference","https://bugzilla.redhat.com/show_bug.cgi?id=1901633","unknown",0.2,false,[],{"_key":55,"name":56,"source":48,"url":57,"maturity":50,"reliability_score":51,"verified":52,"type":9,"platforms":58,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_1E86D5B8BC157863","Exploit Reference (advisory.checkmarx.net)","https://advisory.checkmarx.net/advisory/CX-2020-4286",[],[60,61],"GHSA-pgww-xf46-h92r","PYSEC-2020-62",[],[64,66,68,70,72,74,76,78,80,82,84,86,88,90,92,94,96,98,100],{"_key":65},"ALPINE-CVE-2020-27783",{"_key":67},"RHSA-2021:1898",{"_key":69},"SUSE-SU-2022:0803-1",{"_key":71},"SUSE-SU-2022:0895-1",{"_key":73},"SUSE-SU-2022:1729-1",{"_key":75},"SUSE-SU-2022:3460-1",{"_key":77},"SUSE-SU-2022:3461-1",{"_key":79},"UBUNTU-CVE-2020-27783",{"_key":81},"USN-4666-1",{"_key":83},"USN-4666-2",{"_key":85},"SUSE-SU-2022:3836-1",{"_key":87},"OPENSUSE-SU-2022:0803-1",{"_key":89},"DLA-2467-1",{"_key":91},"DSA-4810-1",{"_key":93},"RHSA-2021:1879",{"_key":95},"RHSA-2021:1761",{"_key":97},"RHSA-2021:3254",{"_key":99},"MGASA-2021-0038",{"_key":101},"DEBIAN-CVE-2020-27783",[],[104,105,106,107,108,109,110,111],{"_key":69},{"_key":71},{"_key":73},{"_key":75},{"_key":77},{"_key":85},{"_key":87},{"_key":99},"2020-12-03T16:39:41.000Z","2025-12-17T21:02:06.822Z","Modified",{"cisa_kev":52,"cisa_ransomware":52,"cisa_vendor":9,"epss_severity":116,"epss_score":117,"severity":118,"severity_score":119,"severity_version":120,"severity_source":121,"severity_vector":122,"severity_status":114},"low",0.01246,"medium",6.1,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",[124,136,143,149,154,158,162,165,170,174,178,182,186,190,194,198,202,206,210,214,218,222],{"url":49,"sources":125,"tags":128},[121,126,127],"nvd","osv_pypi",[129,130,131,132,133,134,135],"X Refsource MISC","Exploit","Issue Tracking","Patch","Third Party Advisory","WEB","REPORT",{"url":137,"sources":138,"tags":139},"https://www.debian.org/security/2020/dsa-4810",[121,126,127],[140,141,133,134,142],"Vendor Advisory","X Refsource DEBIAN","Advisory",{"url":144,"sources":145,"tags":146},"https://lists.debian.org/debian-lts-announce/2020/12/msg00028.html",[121,126,127],[147,148,133,134],"Mailing List","X Refsource MLIST",{"url":150,"sources":151,"tags":152},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMHVKRUT22LVWNL3TB7HPSDHJT74Q3JK/",[121,126],[140,153],"X Refsource FEDORA",{"url":155,"sources":156,"tags":157},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JKG67GPGTV23KADT4D4GK4RMHSO4CIQL/",[121,126],[140,153],{"url":159,"sources":160,"tags":161},"https://www.oracle.com//security-alerts/cpujul2021.html",[121,126,127],[129,132,133,134],{"url":57,"sources":163,"tags":164},[121,126,127],[129,130,133,134,142],{"url":166,"sources":167,"tags":168},"https://security.netapp.com/advisory/ntap-20210521-0003/",[121,126],[169,133],"X Refsource CONFIRM",{"url":171,"sources":172,"tags":173},"https://nvd.nist.gov/vuln/detail/CVE-2020-27783",[127],[142],{"url":175,"sources":176,"tags":177},"https://github.com/lxml/lxml/commit/a105ab8dc262ec6735977c25c13f0bdfcdec72a7",[127],[134],{"url":179,"sources":180,"tags":181},"https://snyk.io/vuln/SNYK-PYTHON-LXML-1047473",[127],[134],{"url":183,"sources":184,"tags":185},"https://security.netapp.com/advisory/ntap-20210521-0003",[127],[134],{"url":187,"sources":188,"tags":189},"https://pypi.org/project/lxml",[127],[134],{"url":191,"sources":192,"tags":193},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TMHVKRUT22LVWNL3TB7HPSDHJT74Q3JK",[127],[134],{"url":195,"sources":196,"tags":197},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JKG67GPGTV23KADT4D4GK4RMHSO4CIQL",[127],[134],{"url":199,"sources":200,"tags":201},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMHVKRUT22LVWNL3TB7HPSDHJT74Q3JK",[127],[134],{"url":203,"sources":204,"tags":205},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JKG67GPGTV23KADT4D4GK4RMHSO4CIQL",[127],[134],{"url":207,"sources":208,"tags":209},"https://github.com/pypa/advisory-database/tree/main/vulns/lxml/PYSEC-2020-62.yaml",[127],[134],{"url":211,"sources":212,"tags":213},"https://github.com/lxml/lxml",[127],[134],{"url":215,"sources":216,"tags":217},"https://github.com/advisories/GHSA-pgww-xf46-h92r",[127],[142],{"url":219,"sources":220,"tags":221},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JKG67GPGTV23KADT4D4GK4RMHSO4CIQL/",[127],[134],{"url":223,"sources":224,"tags":225},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TMHVKRUT22LVWNL3TB7HPSDHJT74Q3JK/",[127],[134],[],{"date":228,"score":117,"percentile":229},"2026-06-04",0.7963,[231,235,238,240,243,246,249,252,255,258,261,264,267,270,273,277,280,283,286,288,291,293,296,299,302,305,307,309,313,316,319,322,325,327,329,331,334,337,340,343,346,349,352,355,358,361,364,367,369,371,374,377,380,383,387,390,393,396,399,402,405,407,410,413,415,418,421,424,426,429,431,434,437,440,443,446,449,452,455,458,461,464,467,470,473,476,479,482,484,487],{"date":232,"score":233,"percentile":234},"2025-11-04",0.01141,0.77732,{"date":236,"score":233,"percentile":237},"2025-11-05",0.77734,{"date":239,"score":233,"percentile":237},"2025-11-06",{"date":241,"score":233,"percentile":242},"2025-11-07",0.77748,{"date":244,"score":233,"percentile":245},"2025-11-08",0.77754,{"date":247,"score":233,"percentile":248},"2025-11-09",0.7775,{"date":250,"score":233,"percentile":251},"2025-11-10",0.77737,{"date":253,"score":233,"percentile":254},"2025-11-11",0.7774,{"date":256,"score":233,"percentile":257},"2025-11-12",0.77757,{"date":259,"score":233,"percentile":260},"2025-11-13",0.77767,{"date":262,"score":233,"percentile":263},"2025-11-14",0.77777,{"date":265,"score":233,"percentile":266},"2025-11-15",0.77773,{"date":268,"score":233,"percentile":269},"2025-11-16",0.77775,{"date":271,"score":233,"percentile":272},"2025-11-17",0.7777,{"date":274,"score":275,"percentile":276},"2025-11-18",0.01693,0.80742,{"date":278,"score":275,"percentile":279},"2025-11-19",0.80744,{"date":281,"score":275,"percentile":282},"2025-11-20",0.80749,{"date":284,"score":233,"percentile":285},"2025-11-21",0.77796,{"date":287,"score":233,"percentile":285},"2025-11-22",{"date":289,"score":233,"percentile":290},"2025-11-23",0.77781,{"date":292,"score":233,"percentile":290},"2025-11-24",{"date":294,"score":233,"percentile":295},"2025-11-25",0.77787,{"date":297,"score":233,"percentile":298},"2025-11-26",0.77794,{"date":300,"score":233,"percentile":301},"2025-11-27",0.77797,{"date":303,"score":233,"percentile":304},"2025-11-28",0.77789,{"date":306,"score":233,"percentile":301},"2025-11-29",{"date":308,"score":233,"percentile":298},"2025-11-30",{"date":310,"score":311,"percentile":312},"2025-12-01",0.00651,0.70163,{"date":314,"score":311,"percentile":315},"2025-12-02",0.70172,{"date":317,"score":311,"percentile":318},"2025-12-03",0.70169,{"date":320,"score":233,"percentile":321},"2025-12-04",0.77785,{"date":323,"score":233,"percentile":324},"2025-12-05",0.77791,{"date":326,"score":233,"percentile":298},"2025-12-06",{"date":328,"score":233,"percentile":304},"2025-12-07",{"date":330,"score":233,"percentile":298},"2025-12-08",{"date":332,"score":233,"percentile":333},"2025-12-09",0.77816,{"date":335,"score":233,"percentile":336},"2025-12-10",0.77839,{"date":338,"score":233,"percentile":339},"2025-12-11",0.77854,{"date":341,"score":233,"percentile":342},"2025-12-12",0.77874,{"date":344,"score":233,"percentile":345},"2025-12-13",0.77877,{"date":347,"score":233,"percentile":348},"2025-12-14",0.77873,{"date":350,"score":233,"percentile":351},"2025-12-15",0.7787,{"date":353,"score":233,"percentile":354},"2025-12-16",0.77882,{"date":356,"score":233,"percentile":357},"2025-12-17",0.77892,{"date":359,"score":233,"percentile":360},"2025-12-18",0.77908,{"date":362,"score":233,"percentile":363},"2025-12-19",0.77921,{"date":365,"score":233,"percentile":366},"2025-12-20",0.77914,{"date":368,"score":233,"percentile":360},"2025-12-21",{"date":370,"score":233,"percentile":360},"2025-12-22",{"date":372,"score":233,"percentile":373},"2025-12-23",0.7791,{"date":375,"score":233,"percentile":376},"2025-12-24",0.77922,{"date":378,"score":233,"percentile":379},"2025-12-25",0.77942,{"date":381,"score":233,"percentile":382},"2025-12-26",0.77938,{"date":384,"score":385,"percentile":386},"2025-12-27",0.01026,0.7681,{"date":388,"score":233,"percentile":389},"2025-12-28",0.77928,{"date":391,"score":233,"percentile":392},"2025-12-29",0.77924,{"date":394,"score":233,"percentile":395},"2025-12-30",0.7793,{"date":397,"score":233,"percentile":398},"2025-12-31",0.77943,{"date":400,"score":311,"percentile":401},"2026-01-01",0.704,{"date":403,"score":311,"percentile":404},"2026-01-02",0.70394,{"date":406,"score":311,"percentile":404},"2026-01-03",{"date":408,"score":233,"percentile":409},"2026-01-04",0.77945,{"date":411,"score":233,"percentile":412},"2026-01-05",0.77936,{"date":414,"score":233,"percentile":409},"2026-01-06",{"date":416,"score":233,"percentile":417},"2026-01-07",0.77951,{"date":419,"score":233,"percentile":420},"2026-01-08",0.77957,{"date":422,"score":233,"percentile":423},"2026-01-09",0.77961,{"date":425,"score":233,"percentile":423},"2026-01-10",{"date":427,"score":233,"percentile":428},"2026-01-11",0.77953,{"date":430,"score":233,"percentile":382},"2026-01-12",{"date":432,"score":233,"percentile":433},"2026-01-13",0.77937,{"date":435,"score":233,"percentile":436},"2026-01-14",0.77958,{"date":438,"score":233,"percentile":439},"2026-01-15",0.77962,{"date":441,"score":233,"percentile":442},"2026-01-16",0.77971,{"date":444,"score":233,"percentile":445},"2026-01-17",0.77977,{"date":447,"score":233,"percentile":448},"2026-01-18",0.77972,{"date":450,"score":233,"percentile":451},"2026-01-19",0.7797,{"date":453,"score":233,"percentile":454},"2026-01-20",0.77963,{"date":456,"score":233,"percentile":457},"2026-01-21",0.77969,{"date":459,"score":233,"percentile":460},"2026-01-22",0.77976,{"date":462,"score":233,"percentile":463},"2026-01-23",0.78002,{"date":465,"score":233,"percentile":466},"2026-01-24",0.78013,{"date":468,"score":233,"percentile":469},"2026-01-25",0.78005,{"date":471,"score":233,"percentile":472},"2026-01-26",0.78,{"date":474,"score":233,"percentile":475},"2026-01-27",0.77999,{"date":477,"score":233,"percentile":478},"2026-01-28",0.78004,{"date":480,"score":233,"percentile":481},"2026-01-29",0.78001,{"date":483,"score":233,"percentile":469},"2026-01-30",{"date":485,"score":233,"percentile":486},"2026-01-31",0.78007,{"date":488,"score":311,"percentile":489},"2026-02-01",0.70469,[491,496,503],{"source":121,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":492,"cvss_v4_0":9},{"baseScore":119,"baseSeverity":493,"vectorString":122,"impactScore":494,"exploitabilityScore":495},"MEDIUM",4.5,7.2,{"source":126,"cvss_v2_0":497,"cvss_v3_0":9,"cvss_v3_1":502,"cvss_v4_0":9},{"baseScore":498,"baseSeverity":9,"vectorString":499,"impactScore":500,"exploitabilityScore":501},4.3,"AV:N/AC:M/Au:N/C:N/I:P/A:N",2.9,8.6,{"baseScore":119,"baseSeverity":493,"vectorString":122,"impactScore":494,"exploitabilityScore":495},{"source":127,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":504,"cvss_v4_0":505},{"baseScore":119,"baseSeverity":9,"vectorString":122,"impactScore":494,"exploitabilityScore":495},{"baseScore":506,"baseSeverity":9,"vectorString":507,"impactScore":9,"exploitabilityScore":9},5.3,"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N",[509,520,528,539,545,552,558,567,574],{"ecosystem":9,"name":510,"vendor":511,"product":512,"cpe_part":513,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":514},"debian linux","debian","debian_linux","o",[515,518],{"version":516,"is_range":52,"range_type":517,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0","cpe",{"version":519,"is_range":52,"range_type":517,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0",{"ecosystem":9,"name":521,"vendor":522,"product":521,"cpe_part":513,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":523},"fedora","fedoraproject",[524,526],{"version":525,"is_range":52,"range_type":517,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"32",{"version":527,"is_range":52,"range_type":517,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"33",{"ecosystem":9,"name":529,"vendor":529,"product":529,"cpe_part":530,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":531},"lxml","a",[532],{"version":533,"is_range":534,"range_type":517,"version_start":535,"version_start_type":536,"version_end":537,"version_end_type":538,"fixed_in":9},"gte1.2_lt4.6.2",true,"1.2","including","4.6.2","excluding",{"ecosystem":9,"name":540,"vendor":541,"product":540,"cpe_part":530,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":542},"snapcenter","netapp",[543],{"version":544,"is_range":52,"range_type":517,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na",{"ecosystem":9,"name":546,"vendor":547,"product":548,"cpe_part":530,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":549},"communications offline mediation controller","oracle","communications_offline_mediation_controller",[550],{"version":551,"is_range":52,"range_type":517,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.0.0.3.0",{"ecosystem":9,"name":553,"vendor":547,"product":554,"cpe_part":530,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":555},"zfs storage appliance kit","zfs_storage_appliance_kit",[556],{"version":557,"is_range":52,"range_type":517,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.8",{"ecosystem":559,"name":529,"vendor":559,"product":529,"cpe_part":9,"purl_type":560,"purl_namespace":9,"purl_name":529,"source":9,"versions":561},"PyPI","pypi",[562,565],{"version":563,"is_range":534,"range_type":564,"version_start":9,"version_start_type":9,"version_end":537,"version_end_type":538,"fixed_in":9},"lt4_6_2","ecosystem",{"version":566,"is_range":534,"range_type":564,"version_start":535,"version_start_type":536,"version_end":537,"version_end_type":538,"fixed_in":9},"gte1_2_lt4_6_2",{"ecosystem":9,"name":568,"vendor":569,"product":570,"cpe_part":513,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":571},"enterprise linux","redhat","enterprise_linux",[572],{"version":573,"is_range":52,"range_type":517,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"ecosystem":9,"name":575,"vendor":569,"product":576,"cpe_part":530,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":577},"software collections","software_collections",[578],{"version":544,"is_range":52,"range_type":517,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]