CSS JS Manager, Async JavaScript, Defer Render Blocking CSS Supports WooCommerce Security Vulnerabilities

CVE-2024-4148 Redos (Regular Expression Denial of Service) in lunary-ai/lunary

A Regular Expression Denial of Service (ReDoS) vulnerability exists in the lunary-ai/lunary application, version 1.2.10. An attacker can exploit this vulnerability by maliciously manipulating regular expressions, which can significantly impact the response time of the application and potentially...

GHSA-2C7C-3MJ9-8FQH vulnerabilities

Vulnerabilities for packages: flux-source-controller, sops, terragrunt, oauth2-proxy, dex, fulcio, kyverno, cert-manager, cilium-envoy, falco, tekton-chains, traefik, vault, vexctl, cloudflared, istio-pilot-discovery, aactl, kubescape, argo-workflows, tekton-pipelines, slsa-verifier,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: flannel, metrics-server, sigstore-scaffolding, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, policy-controller, supercronic, tekton-chains, stakater-reloader, hugo-extended, hubble, prometheus-alertmanager, vault, gitness, temporal,...

CVE-2024-25620 vulnerabilities

Vulnerabilities for packages: flux-source-controller, flux-helm-controller, eksctl, helm-operator, up, zarf, chartmuseum, zot, cert-manager, istio-operator, k8sgpt, kubescape, cilium-cli, helm-push, k9s, kots,...

GHSA-7WW5-4WQC-M92C vulnerabilities

Vulnerabilities for packages: flux-source-controller, telegraf, eksctl, melange, zot, cert-manager, gitness, flux-helm-controller, grype, kubescape, helm-push, kaniko, tekton-pipelines, up, kubevela, newrelic-infrastructure-agent, cilium-cli, k3d, kots, trivy, ctop, fuse-overlayfs-snapshotter,...

GHSA-R53H-JV2G-VPX6 vulnerabilities

Vulnerabilities for packages: flux-source-controller, flux-helm-controller, eksctl, helm-operator, up, zarf, chartmuseum, zot, cert-manager, istio-operator, k8sgpt, kubescape, cilium-cli, helm-push, k9s, kots,...

GHSA-JQ35-85CJ-FJ4P vulnerabilities

Vulnerabilities for packages: cert-manager, falco, tekton-chains, bom, aactl, kubescape, tekton-pipelines, slsa-verifier, paranoia, loki, prometheus, up, chartmuseum, goreleaser, k3d, k3s, kpt, ctop, skaffold,...

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, stakater-reloader, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, dotnet, secrets-store-csi-driver-provider-gcp, gobuster, prometheus-bind-exporter,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: flannel, metrics-server, vt-cli, gitlab-runner, configmap-reload, gostatsd, influx, harbor-cli, policy-controller, tekton-chains, mockery, mongo-tools, prometheus-alertmanager, gitness, aws-efs-csi-driver, boring-registry, step, harbor-scanner-trivy, mods, spqr,...

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: flannel, metrics-server, vt-cli, gitlab-runner, configmap-reload, gostatsd, influx, harbor-cli, policy-controller, tekton-chains, mockery, mongo-tools, prometheus-alertmanager, gitness, aws-efs-csi-driver, boring-registry, step, harbor-scanner-trivy, mods, spqr,...

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: protoc-gen-go-grpc, metrics-server, cni-plugins, go-licenses, sops, configmap-reload, influx, aws-flb-cloudwatch, falco, cilium-envoy, petname, sbom-scorecard, local-path-provisioner, gosu, hey, cortex, docker-credential-ecr-login,...

CVE-2024-24557 vulnerabilities

Vulnerabilities for packages: gitlab-runner, eksctl, kargo, telegraf, helm-operator, kyverno, guac, cert-manager, falco, policy-controller, tekton-chains, traefik, zot, vexctl, crane, bom, flux-helm-controller, timoni, istio-pilot-discovery, aactl, cri-tools, kubescape, k9s, docker-credential-gcr,....

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: flannel, metrics-server, sigstore-scaffolding, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, policy-controller, supercronic, tekton-chains, stakater-reloader, hugo-extended, hubble, prometheus-alertmanager, vault, gitness, temporal,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...

GHSA-RCJV-MGP8-QVMR vulnerabilities

Vulnerabilities for packages: thanos, prometheus, k3s, up, kubevela, gitlab-kas, kubernetes, cert-manager, caddy, keda, gatekeeper, prometheus-adapter, ipfs,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: vt-cli, sigstore-scaffolding, gitlab-runner, harbor-cli, opentofu, tekton-chains, harbor-scanner-trivy, spqr, render-template, kube-rbac-proxy, aactl, kubeflow-pipelines, nri-mysql, s5cmd, mkcert, wireguard-go, nuclei, kyverno-policy-reporter, minio,...

CVE-2023-48795 vulnerabilities

Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, temporal-ui-server, opentofu, tekton-chains, mongo-tools, prometheus-alertmanager, vault, gitness, temporal, boring-registry, step, kube-rbac-proxy, aactl, kubeflow-pipelines, cluster-autoscaler, gobuster,...

CVE-2023-45142 vulnerabilities

Vulnerabilities for packages: thanos, prometheus, k3s, up, kubevela, gitlab-kas, kubernetes, cert-manager, caddy, keda, gatekeeper, prometheus-adapter, ipfs,...

CVE-2023-3978 vulnerabilities

Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, yq, stakater-reloader, prometheus-alertmanager, vault, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, secrets-store-csi-driver-provider-gcp,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...

CVE-2023-47108 vulnerabilities

Vulnerabilities for packages: kubernetes-csi-external-resizer, docker-compose, argo-cd, k3s, kubevela, temporal-server, kine, kyverno, kubernetes, cert-manager, containerd, cri-tools, keda, kubescape, envoy-ratelimit, aws-ebs-csi-driver,...

GHSA-8PGV-569H-W5RW vulnerabilities

Vulnerabilities for packages: kubernetes-csi-external-resizer, docker-compose, argo-cd, k3s, kubevela, temporal-server, kine, kyverno, kubernetes, cert-manager, containerd, cri-tools, keda, kubescape, envoy-ratelimit, aws-ebs-csi-driver,...

CVE-2024-26147 vulnerabilities

Vulnerabilities for packages: flux-source-controller, flux-helm-controller, eksctl, helm-operator, up, zarf, chartmuseum, zot, cert-manager, istio-operator, k8sgpt, kubescape, cilium-cli, helm-push, k9s, kots,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: vt-cli, sigstore-scaffolding, gitlab-runner, harbor-cli, opentofu, tekton-chains, harbor-scanner-trivy, spqr, render-template, kube-rbac-proxy, aactl, kubeflow-pipelines, nri-mysql, s5cmd, mkcert, wireguard-go, nuclei, kyverno-policy-reporter, minio,...

GHSA-2JWV-JMQ4-4J3R vulnerabilities

Vulnerabilities for packages: flannel, metrics-server, vt-cli, gitlab-runner, configmap-reload, gostatsd, influx, harbor-cli, policy-controller, tekton-chains, mockery, mongo-tools, prometheus-alertmanager, gitness, aws-efs-csi-driver, boring-registry, step, harbor-scanner-trivy, mods, spqr,...

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, tekton-chains, yq, stakater-reloader, prometheus-alertmanager, vault, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, secrets-store-csi-driver-provider-gcp,...

GHSA-C5Q2-7R4C-MV6G vulnerabilities

Vulnerabilities for packages: flux-source-controller, sigstore-scaffolding, kargo, terragrunt, oauth2-proxy, melange, dex, fulcio, kyverno, guac, cert-manager, falco, policy-controller, rabbitmq-messaging-topology-operator, tekton-chains, vault, vexctl, apko, grpc-health-probe, rook, step,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...

GHSA-5F94-VHJQ-RPG8 vulnerabilities

Vulnerabilities for packages: protoc-gen-go-grpc, metrics-server, cni-plugins, go-licenses, sops, configmap-reload, influx, aws-flb-cloudwatch, falco, cilium-envoy, petname, sbom-scorecard, local-path-provisioner, gosu, hey, cortex, docker-credential-ecr-login,...

GHSA-9F76-WG39-X86H vulnerabilities

Vulnerabilities for packages: protoc-gen-go-grpc, metrics-server, cni-plugins, go-licenses, sops, configmap-reload, influx, aws-flb-cloudwatch, falco, cilium-envoy, petname, sbom-scorecard, local-path-provisioner, gosu, hey, cortex, docker-credential-ecr-login,...

CVE-2024-28180 vulnerabilities

Vulnerabilities for packages: flux-source-controller, sigstore-scaffolding, kargo, terragrunt, oauth2-proxy, melange, dex, fulcio, kyverno, guac, cert-manager, falco, policy-controller, rabbitmq-messaging-topology-operator, tekton-chains, vault, vexctl, apko, grpc-health-probe, rook, step,...

GHSA-2WRH-6PVC-2JM9 vulnerabilities

Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, yq, stakater-reloader, prometheus-alertmanager, vault, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, secrets-store-csi-driver-provider-gcp,...

GHSA-4374-P667-P6C8 vulnerabilities

Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, tekton-chains, yq, stakater-reloader, prometheus-alertmanager, vault, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, secrets-store-csi-driver-provider-gcp,...

GHSA-45X7-PX36-X8W8 vulnerabilities

Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, temporal-ui-server, opentofu, tekton-chains, mongo-tools, prometheus-alertmanager, vault, gitness, temporal, boring-registry, step, kube-rbac-proxy, aactl, kubeflow-pipelines, cluster-autoscaler, gobuster,...

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: flux-source-controller, metrics-server, telegraf, terraform-provider-aws, oauth2-proxy, dex, cert-manager, cilium-envoy, falco, coredns, pulumi-language-java, influxd, cortex, dynamic-localpv-provisioner, aws-efs-csi-driver, kubernetes-csi-livenessprobe,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...

GHSA-V53G-5GJP-272R vulnerabilities

Vulnerabilities for packages: flux-source-controller, flux-helm-controller, eksctl, helm-operator, up, zarf, chartmuseum, zot, cert-manager, istio-operator, k8sgpt, kubescape, cilium-cli, helm-push, k9s, kots,...

CVE-2023-39326 vulnerabilities

Vulnerabilities for packages: protoc-gen-go-grpc, metrics-server, cni-plugins, go-licenses, sops, configmap-reload, influx, aws-flb-cloudwatch, falco, cilium-envoy, petname, sbom-scorecard, local-path-provisioner, gosu, hey, cortex, docker-credential-ecr-login,...

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, stakater-reloader, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, dotnet, secrets-store-csi-driver-provider-gcp, gobuster, prometheus-bind-exporter,...

GHSA-XW73-RW38-6VJC vulnerabilities

Vulnerabilities for packages: gitlab-runner, eksctl, kargo, telegraf, helm-operator, kyverno, guac, cert-manager, falco, policy-controller, tekton-chains, traefik, zot, vexctl, crane, bom, flux-helm-controller, timoni, istio-pilot-discovery, aactl, cri-tools, kubescape, k9s, docker-credential-gcr,....

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: flannel, metrics-server, vt-cli, gitlab-runner, configmap-reload, gostatsd, influx, harbor-cli, policy-controller, tekton-chains, mockery, mongo-tools, prometheus-alertmanager, gitness, aws-efs-csi-driver, boring-registry, step, harbor-scanner-trivy, mods, spqr,...

CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5

CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...

CVE-2023-39325 affecting package cert-manager for versions less than 1.11.2-5

CVE-2023-39325 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...

CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5

CVE-2023-44487 affecting package cert-manager for versions less than 1.11.2-5. A patched version of the package is...