Cross-site Request Forgery (CSRF)
|
flask-security-too
[3.2.0, 3.4.5)
|
pip
|
09 Apr, 2021
|
Information Exposure
|
foreman_azure_rm
<2.2.0
|
RubyGems
|
09 Apr, 2021
|
Access Restriction Bypass
|
mediawiki/core
<1.31.12,>=1.32.0, <1.35.2
|
Composer
|
09 Apr, 2021
|
Improper Input Validation
|
systeminformation
<5.6.11
|
npm
|
09 Apr, 2021
|
Access Restriction Bypass
|
mediawiki/core
>=1.32.0, <1.35.2,<1.31.12
|
Composer
|
09 Apr, 2021
|
Improper Access Control
|
mediawiki/core
>=1.32.0, <1.35.2,<1.31.13
|
Composer
|
09 Apr, 2021
|
Access Restriction Bypass
|
mediawiki/core
>=1.32.0, <1.35.2,<1.31.12
|
Composer
|
09 Apr, 2021
|
Cross-site Scripting (XSS)
|
wikimedia/parsoid
>=0.12.0, <0.12.2,<0.11.1
|
Composer
|
09 Apr, 2021
|
Improper Input Validation
|
rexml
<3.2.5
|
RubyGems
|
09 Apr, 2021
|
Access Restriction Bypass
|
org.jenkins-ci.plugins:hp-application-automation-tools-plugin
[,6.8)
|
Maven
|
09 Apr, 2021
|
Deadlock
|
github.com/rclone/rclone/vfs/vfscache/downloaders
<1.54.0
|
Go
|
09 Apr, 2021
|
Privilege Escalation
|
apache-airflow
[,2.0.1)
|
pip
|
08 Apr, 2021
|
Insufficient Validation
|
org.jenkins-ci.main:jenkins-core
[2.278,2.287),[,2.277.2)
|
Maven
|
08 Apr, 2021
|
Cryptographic Weakness
|
jsrsasign
<10.1.13
|
npm
|
08 Apr, 2021
|
Cryptographic Weakness
|
org.webjars.npm:jsrsasign
[0,]
|
Maven
|
08 Apr, 2021
|
Cryptographic Weakness
|
org.webjars.bowergithub.kjur:jsrsasign
[0,]
|
Maven
|
08 Apr, 2021
|
Cryptographic Weakness
|
org.webjars.bower:jsrsasign
[0,]
|
Maven
|
08 Apr, 2021
|
Information Exposure
|
ansible
[2.9.0, 2.9.7),[2.8.0, 2.8.11),[2.7.0, 2.7.17)
|
pip
|
08 Apr, 2021
|
Cross-site Request Forgery (CSRF)
|
org.jenkins-ci.plugins:promoted-builds
[,3.9.1)
|
Maven
|
08 Apr, 2021
|
NULL Pointer Dereference
|
mosquitto
<2.0.10
|
cocoapods
|
08 Apr, 2021
|
Open Redirect
|
indico
[,2.3.4)
|
pip
|
08 Apr, 2021
|
Improper Validation
|
org.jenkins-ci.main:jenkins-core
[2.278,2.287),[,2.277.2)
|
Maven
|
08 Apr, 2021
|
Buffer Overflow
|
ffmpeg-up-to-date
>=0.0.0
|
cocoapods
|
08 Apr, 2021
|
Regular Expression Denial of Service (ReDoS)
|
scikit-learn
[0,]
|
pip
|
07 Apr, 2021
|
Improper Authentication
|
phpseclib/phpseclib
>=3.0.0, <3.0.7,<2.0.31
|
Composer
|
07 Apr, 2021
|
Directory Traversal
|
github.com/opencontainers/umoci/oci/layer
<0.4.7
|
Go
|
07 Apr, 2021
|
Denial of Service (DoS)
|
github.com/syncthing/syncthing/lib/relay/protocol
<1.15.0
|
Go
|
07 Apr, 2021
|
Arbitrary Code Execution
|
projen
>=0.6.0 <0.16.41
|
npm
|
07 Apr, 2021
|
Privilege Escalation
|
mongodb-js-metrics
<6.0.0
|
npm
|
07 Apr, 2021
|
Arbitrary Command Injection
|
systeminformation
<5.6.4
|
npm
|
07 Apr, 2021
|