Browse all 3 CVE security advisories affecting russellhaering. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Russellhaering focuses on software security research and vulnerability disclosure, with a core use case in identifying and reporting flaws in various systems. Historically, their recorded CVEs primarily involve remote code execution and cross-site scripting vulnerabilities, indicating a focus on web application security. The researcher demonstrates a methodical approach to vulnerability analysis, with no major public security incidents attributed to their work. Their contributions to the security community through responsible disclosure practices help improve software safety across multiple platforms.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-33487 | goxmldsig has validateSignature Loop Variable Capture Signature Bypass — goxmldsigCWE-347 | 7.5 | High | 2026-03-26 |
| CVE-2023-26483 | gosaml2 vulnerable to Denial of Service via deflate decompression bomb — gosaml2CWE-409 | 5.3 | Medium | 2023-03-03 |
| CVE-2020-15216 | Signature Validation Bypass in goxmldsig — goxmldsigCWE-347 | 5.3 | Medium | 2020-09-29 |
This page lists every published CVE security advisory associated with russellhaering. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.