Album And Image Gallery With Lightbox – Flagallery Photo Portfolio Security Vulnerabilities

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: pombump, consul, nri-mssql, clusterctl, crossplane, render-template, vite, flux-image-reflector-controller, nri-discovery-kubernetes, kube-state-metrics, gomplate, kubernetes-event-exporter, aws-load-balancer-controller, newrelic-infrastructure-agent, thanos-operator,....

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: consul, clusterctl, docker, policy-controller, crossplane, frp, cert-manager, flux-image-reflector-controller, external-secrets-operator, nri-discovery-kubernetes, kube-state-metrics, syft, gomplate, kubernetes-event-exporter, aws-load-balancer-controller,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: crossplane, frp, render-template, bincapz, harbor-registry, gomplate, aws-load-balancer-controller, capslock, volume-modifier-for-k8s, ferretdb, nri-mysql, velero-plugin-for-aws, gitsign, caddy, gitlab-shell, guac, q, kubernetes-dashboard,...

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: pombump, clusterctl, gostatsd, policy-controller, crossplane, frp, cert-manager, render-template, flux-image-reflector-controller, external-secrets-operator, kube-state-metrics, extism, step, harbor-registry, libnvidia-container, gomplate, trivy,...

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: pombump, clusterctl, gostatsd, policy-controller, crossplane, frp, cert-manager, render-template, flux-image-reflector-controller, external-secrets-operator, kube-state-metrics, extism, step, harbor-registry, libnvidia-container, gomplate, trivy,...

CVE-2024-24789 vulnerabilities

Vulnerabilities for packages: crossplane, frp, render-template, extism, harbor-registry, gomplate, aws-load-balancer-controller, capslock, volume-modifier-for-k8s, ferretdb, nri-mysql, velero-plugin-for-aws, gitsign, caddy, gitlab-shell, q, kubernetes-dashboard,...

CVE-2023-3978 vulnerabilities

Vulnerabilities for packages: consul, frp, flux-image-reflector-controller, external-secrets-operator, kube-state-metrics, gomplate, aws-load-balancer-controller, newrelic-infrastructure-agent, influxd, thanos-operator, nfs-subdir-external-provisioner, opentofu, gatekeeper, nri-prometheus,...

CVE-2024-24557 vulnerabilities

Vulnerabilities for packages: skaffold, k3s, kyverno, up, k8sgpt, policy-controller, cert-manager, flux-image-reflector-controller, falco, istio-pilot-agent, kargo, buildkitd, aactl, newrelic-infrastructure-agent, trivy, falcoctl, tekton-pipelines, zarf, crane, bom, ctop, telegraf, timoni, dagger,....

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: consul, clusterctl, docker, policy-controller, crossplane, frp, cert-manager, flux-image-reflector-controller, external-secrets-operator, nri-discovery-kubernetes, kube-state-metrics, syft, gomplate, kubernetes-event-exporter, aws-load-balancer-controller,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: pombump, consul, nri-mssql, clusterctl, crossplane, render-template, vite, flux-image-reflector-controller, nri-discovery-kubernetes, kube-state-metrics, gomplate, kubernetes-event-exporter, aws-load-balancer-controller, newrelic-infrastructure-agent, thanos-operator,....

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: pombump, consul, nri-mssql, clusterctl, crossplane, render-template, vite, flux-image-reflector-controller, nri-discovery-kubernetes, kube-state-metrics, gomplate, kubernetes-event-exporter, aws-load-balancer-controller, newrelic-infrastructure-agent, thanos-operator,....

CVE-2024-35255 vulnerabilities

Vulnerabilities for packages: flyte, grafana-mimir, kyverno, up, policy-controller, cert-manager, step-ca, flux-image-reflector-controller, external-secrets-operator, sqlpad, rekor, step, nuclei, harbor-registry, rook, restic, fluent-bit-plugin-loki, teleport, timestamp-authority, buildkitd,...

GHSA-M5VV-6R4H-3VJ9 vulnerabilities

Vulnerabilities for packages: flyte, grafana-mimir, kyverno, up, policy-controller, cert-manager, step-ca, flux-image-reflector-controller, external-secrets-operator, sqlpad, rekor, step, nuclei, harbor-registry, rook, restic, fluent-bit-plugin-loki, teleport, timestamp-authority, buildkitd,...

CVE-2023-48795 vulnerabilities

Vulnerabilities for packages: consul, nri-mssql, crossplane, frp, cert-manager, flux-image-reflector-controller, external-secrets-operator, kube-state-metrics, step, gomplate, kubernetes-event-exporter, trivy, influxd, nfs-subdir-external-provisioner, opentofu, prometheus-nats-exporter,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: pombump, consul, nri-mssql, clusterctl, crossplane, render-template, vite, flux-image-reflector-controller, nri-discovery-kubernetes, kube-state-metrics, gomplate, kubernetes-event-exporter, aws-load-balancer-controller, newrelic-infrastructure-agent, thanos-operator,....

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: pombump, consul, nri-mssql, clusterctl, crossplane, render-template, vite, flux-image-reflector-controller, nri-discovery-kubernetes, kube-state-metrics, gomplate, kubernetes-event-exporter, aws-load-balancer-controller, newrelic-infrastructure-agent, thanos-operator,....

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: pombump, consul, nri-mssql, clusterctl, crossplane, render-template, vite, flux-image-reflector-controller, nri-discovery-kubernetes, kube-state-metrics, gomplate, kubernetes-event-exporter, aws-load-balancer-controller, newrelic-infrastructure-agent, thanos-operator,....

GHSA-2JWV-JMQ4-4J3R vulnerabilities

Vulnerabilities for packages: pombump, clusterctl, gostatsd, policy-controller, crossplane, frp, cert-manager, render-template, flux-image-reflector-controller, external-secrets-operator, kube-state-metrics, extism, step, harbor-registry, libnvidia-container, gomplate, trivy,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: crossplane, frp, render-template, bincapz, harbor-registry, gomplate, aws-load-balancer-controller, capslock, volume-modifier-for-k8s, ferretdb, nri-mysql, velero-plugin-for-aws, gitsign, caddy, gitlab-shell, guac, q, kubernetes-dashboard,...

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: consul, frp, flux-image-reflector-controller, external-secrets-operator, kube-state-metrics, gomplate, aws-load-balancer-controller, newrelic-infrastructure-agent, influxd, thanos-operator, nfs-subdir-external-provisioner, opentofu, gatekeeper, nri-prometheus,...

GHSA-9763-4F94-GFCH vulnerabilities

Vulnerabilities for packages: apko, argo-cd, skaffold, policy-controller, crossplane, pulumi-language-dotnet, falco, aactl, kaniko, terragrunt, zarf, pulumi-language-yaml, pulumi, cosign, spire-server, actions-runner-controller, flux-kustomize-controller, flux-notification-controller, rclone,...

CVE-2024-24790 vulnerabilities

Vulnerabilities for packages: crossplane, frp, render-template, extism, harbor-registry, gomplate, aws-load-balancer-controller, capslock, volume-modifier-for-k8s, ferretdb, nri-mysql, velero-plugin-for-aws, gitsign, caddy, gitlab-shell, q, kubernetes-dashboard,...

GHSA-49GW-VXVF-FC2G vulnerabilities

Vulnerabilities for packages: crossplane, frp, render-template, extism, harbor-registry, gomplate, aws-load-balancer-controller, capslock, volume-modifier-for-k8s, ferretdb, nri-mysql, velero-plugin-for-aws, gitsign, caddy, gitlab-shell, q, kubernetes-dashboard,...

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: consul, frp, flux-image-reflector-controller, external-secrets-operator, kube-state-metrics, gomplate, aws-load-balancer-controller, newrelic-infrastructure-agent, influxd, thanos-operator, nfs-subdir-external-provisioner, opentofu, gatekeeper, nri-prometheus,...

GHSA-45X7-PX36-X8W8 vulnerabilities

Vulnerabilities for packages: consul, nri-mssql, crossplane, frp, cert-manager, flux-image-reflector-controller, external-secrets-operator, kube-state-metrics, step, gomplate, kubernetes-event-exporter, trivy, influxd, nfs-subdir-external-provisioner, opentofu, prometheus-nats-exporter,...

GHSA-2WRH-6PVC-2JM9 vulnerabilities

Vulnerabilities for packages: consul, frp, flux-image-reflector-controller, external-secrets-operator, kube-state-metrics, gomplate, aws-load-balancer-controller, newrelic-infrastructure-agent, influxd, thanos-operator, nfs-subdir-external-provisioner, opentofu, gatekeeper, nri-prometheus,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: pombump, consul, nri-mssql, clusterctl, crossplane, render-template, vite, flux-image-reflector-controller, nri-discovery-kubernetes, kube-state-metrics, gomplate, kubernetes-event-exporter, aws-load-balancer-controller, newrelic-infrastructure-agent, thanos-operator,....

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: pombump, consul, nri-mssql, clusterctl, crossplane, render-template, vite, flux-image-reflector-controller, nri-discovery-kubernetes, kube-state-metrics, gomplate, kubernetes-event-exporter, aws-load-balancer-controller, newrelic-infrastructure-agent, thanos-operator,....

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: pombump, consul, nri-mssql, clusterctl, crossplane, render-template, vite, flux-image-reflector-controller, nri-discovery-kubernetes, kube-state-metrics, gomplate, kubernetes-event-exporter, aws-load-balancer-controller, newrelic-infrastructure-agent, thanos-operator,....

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: pombump, clusterctl, gostatsd, policy-controller, crossplane, frp, cert-manager, render-template, flux-image-reflector-controller, external-secrets-operator, kube-state-metrics, extism, step, harbor-registry, libnvidia-container, gomplate, trivy,...

GHSA-236W-P7WF-5PH8 vulnerabilities

Vulnerabilities for packages: crossplane, frp, render-template, extism, harbor-registry, gomplate, aws-load-balancer-controller, capslock, volume-modifier-for-k8s, ferretdb, nri-mysql, velero-plugin-for-aws, gitsign, caddy, gitlab-shell, q, kubernetes-dashboard,...

GHSA-XW73-RW38-6VJC vulnerabilities

Vulnerabilities for packages: skaffold, k3s, kyverno, up, k8sgpt, policy-controller, cert-manager, flux-image-reflector-controller, falco, istio-pilot-agent, kargo, buildkitd, aactl, newrelic-infrastructure-agent, trivy, falcoctl, tekton-pipelines, zarf, crane, bom, ctop, telegraf, timoni, dagger,....

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: pombump, consul, nri-mssql, clusterctl, crossplane, render-template, vite, flux-image-reflector-controller, nri-discovery-kubernetes, kube-state-metrics, gomplate, kubernetes-event-exporter, aws-load-balancer-controller, newrelic-infrastructure-agent, thanos-operator,....

ermis-suites.gr Cross Site Scripting vulnerability OBB-3935826

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

typet.gr Cross Site Scripting vulnerability OBB-3935825

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

codepromo-rtbf-be.digidip.net Open Redirect vulnerability OBB-3935824

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

forumanti-crisefr.digidip.net Open Redirect vulnerability OBB-3935823

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

CVE-2024-36289

Reusing a nonce, key pair in encryption issue exists in "FreeFrom - the nostr client" App versions prior to 1.3.5 for Android and iOS. If this vulnerability is exploited, the content of direct messages (DMs) between users may be manipulated by a man-in-the-middle...

CVE-2024-6048

Openfind's MailGates and MailAudit fail to properly filter user input when analyzing email attachments. An unauthenticated remote attacker can exploit this vulnerability to inject system commands and execute them on the remote...

CVE-2024-6048

Openfind's MailGates and MailAudit fail to properly filter user input when analyzing email attachments. An unauthenticated remote attacker can exploit this vulnerability to inject system commands and execute them on the remote...

CVE-2024-36289

Reusing a nonce, key pair in encryption issue exists in "FreeFrom - the nostr client" App versions prior to 1.3.5 for Android and iOS. If this vulnerability is exploited, the content of direct messages (DMs) between users may be manipulated by a man-in-the-middle...

CVE-2024-36279

Reliance on obfuscation or encryption of security-relevant inputs without integrity checking issue exists in "FreeFrom - the nostr client" App versions prior to 1.3.5 for Android and iOS. If this vulnerability is exploited, the content of direct messages (DMs) between users may be manipulated by a....

CVE-2024-36279

Reliance on obfuscation or encryption of security-relevant inputs without integrity checking issue exists in "FreeFrom - the nostr client" App versions prior to 1.3.5 for Android and iOS. If this vulnerability is exploited, the content of direct messages (DMs) between users may be manipulated by a....

CVE-2024-36277

Improper verification of cryptographic signature issue exists in "FreeFrom - the nostr client" App versions prior to 1.3.5 for Android and iOS. The affected app cannot detect event data with invalid...

CVE-2024-36277

Improper verification of cryptographic signature issue exists in "FreeFrom - the nostr client" App versions prior to 1.3.5 for Android and iOS. The affected app cannot detect event data with invalid...

avdelidi.gr Cross Site Scripting vulnerability OBB-3935819

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

Exploit for CVE-2024-0757

CVE-2024-0757 (Exploit) Description The Insert or Embed...

CVE-2024-36289

Reusing a nonce, key pair in encryption issue exists in "FreeFrom - the nostr client" App versions prior to 1.3.5 for Android and iOS. If this vulnerability is exploited, the content of direct messages (DMs) between users may be manipulated by a man-in-the-middle...

CVE-2024-36279

Reliance on obfuscation or encryption of security-relevant inputs without integrity checking issue exists in "FreeFrom - the nostr client" App versions prior to 1.3.5 for Android and iOS. If this vulnerability is exploited, the content of direct messages (DMs) between users may be manipulated by a....

CVE-2024-36277

Improper verification of cryptographic signature issue exists in "FreeFrom - the nostr client" App versions prior to 1.3.5 for Android and iOS. The affected app cannot detect event data with invalid...