Interactive Contact Form And Multi Step Form Builder With Drag & Drop Editor Security Vulnerabilities

Tuesday, July 2, 2024 Security Releases

Summary The Node.js project will release new versions of the 22.x, 20.x, 18.x releases lines on or shortly after, Tuesday, July 2, 2024 in order to address: 1 high severity issues. 2 medium severity issues. 3 low severity issues. Node.js fetch will be upgraded to undici v6.19.2 on Node.js 18.x...

CVE-2024-6104 vulnerabilities

Vulnerabilities for packages: gitlab-runner, gomplate, external-dns, terragrunt, consul, vexctl, sigstore-scaffolding, buildkitd, scorecard, sops, k3d, nuclei, spire-server, tekton-chains, flux-helm-controller, timestamp-authority, falcoctl, flux-kustomize-controller, rook, terraform, gitsign,...

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: kpt, karpenter, crossplane, atlantis, caddy, kubernetes-csi-external-resizer, timoni, tkn, k9s, vault-k8s, prometheus-node-exporter, cluster-proportional-autoscaler, osv-scanner, scorecard, sops, kots, temporal, cass-operator, tekton-chains, prometheus-beat-exporter,.....

CVE-2024-27304 vulnerabilities

Vulnerabilities for packages: spicedb, trillian, ferretdb, src, temporal-server, caddy, keda, amass, vault, argo-workflows, kube-bench, kots, kine, telegraf, k3s,...

GHSA-MRWW-27VC-GGHV vulnerabilities

Vulnerabilities for packages: spicedb, trillian, ferretdb, src, temporal-server, caddy, keda, amass, vault, argo-workflows, kube-bench, kots, kine, telegraf, k3s,...

GHSA-VR64-R9QJ-H27F vulnerabilities

Vulnerabilities for packages:...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: timoni, k9s, cue, prometheus-beat-exporter, cni-plugins, nri-haproxy, docker-credential-acr-env, slsa-verifier, kube-state-metrics, crossplane-provider-gcp, flux-image-automation-controller, nri-mssql, wait-for-port, nsc, kor, ghaudit, vertical-pod-autoscaler,...

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: hello-world-golang, karpenter, crossplane, atlantis, caddy, kpt, kubernetes-csi-external-resizer, timoni, k9s, vault-k8s, osv-scanner, scorecard, sops, lazygit, tekton-chains, petname, cue, prometheus-beat-exporter, spegel, ksops, harbor-scanner-trivy, influx,...

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: hello-world-golang, karpenter, crossplane, atlantis, caddy, kpt, kubernetes-csi-external-resizer, timoni, k9s, vault-k8s, osv-scanner, scorecard, sops, lazygit, tekton-chains, petname, cue, prometheus-beat-exporter, spegel, ksops, harbor-scanner-trivy, influx,...

CVE-2024-24789 vulnerabilities

Vulnerabilities for packages: timoni, k9s, wolfictl, kots, prometheus-beat-exporter, cni-plugins, nri-haproxy, libnvidia-container, docker-credential-acr-env, grype, slsa-verifier, kube-state-metrics, crossplane-provider-gcp, flux-image-automation-controller, nri-mssql, wait-for-port, nsc,...

GHSA-V6V8-XJ6M-XWQH vulnerabilities

Vulnerabilities for packages: gitlab-runner, gomplate, external-dns, terragrunt, consul, vexctl, sigstore-scaffolding, buildkitd, scorecard, sops, k3d, nuclei, spire-server, tekton-chains, flux-helm-controller, timestamp-authority, falcoctl, flux-kustomize-controller, rook, terraform, gitsign,...

CVE-2023-48795 vulnerabilities

Vulnerabilities for packages: crossplane, atlantis, caddy, vault-k8s, prometheus-node-exporter, scorecard, sops, kots, temporal, tekton-chains, prometheus-mongodb-exporter, gitsign, istio-pilot-agent, prometheus-alertmanager, actions-runner-controller, frp, docker-credential-acr-env, grype,...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: kpt, karpenter, crossplane, atlantis, caddy, kubernetes-csi-external-resizer, timoni, tkn, k9s, vault-k8s, prometheus-node-exporter, cluster-proportional-autoscaler, osv-scanner, scorecard, sops, kots, temporal, cass-operator, tekton-chains, prometheus-beat-exporter,.....

CVE-2024-35255 vulnerabilities

Vulnerabilities for packages: gitlab-runner, hugo, cortex, py3-azure-identity, traefik, external-dns, terragrunt, teleport, grafana-agent-operator, sigstore-scaffolding, buildkitd, restic, sops, nuclei, spire-server, fluent-bit-plugin-loki, tekton-chains, timestamp-authority, falcoctl,...

GHSA-M5VV-6R4H-3VJ9 vulnerabilities

Vulnerabilities for packages: gitlab-runner, hugo, cortex, py3-azure-identity, traefik, external-dns, terragrunt, teleport, grafana-agent-operator, sigstore-scaffolding, buildkitd, restic, sops, nuclei, spire-server, fluent-bit-plugin-loki, tekton-chains, timestamp-authority, falcoctl,...

CVE-2024-27289 vulnerabilities

Vulnerabilities for packages: trillian, caddy, vault, argo-workflows, kots, telegraf,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: timoni, k9s, cue, prometheus-beat-exporter, cni-plugins, nri-haproxy, docker-credential-acr-env, slsa-verifier, kube-state-metrics, crossplane-provider-gcp, flux-image-automation-controller, nri-mssql, wait-for-port, nsc, kor, ghaudit, vertical-pod-autoscaler,...

CVE-2024-24790 vulnerabilities

Vulnerabilities for packages: timoni, k9s, wolfictl, kots, prometheus-beat-exporter, cni-plugins, nri-haproxy, libnvidia-container, docker-credential-acr-env, grype, slsa-verifier, kube-state-metrics, crossplane-provider-gcp, flux-image-automation-controller, nri-mssql, wait-for-port, nsc,...

GHSA-C5Q2-7R4C-MV6G vulnerabilities

Vulnerabilities for packages: dex, gomplate, terragrunt, grpc-health-probe, vexctl, sigstore-scaffolding, containerd, dgraph, wolfictl, spire-server, tekton-chains, apko, timestamp-authority, falcoctl, flux-kustomize-controller, rook, gitsign, istio-pilot-agent, keda, policy-controller, aactl,...

GHSA-2JWV-JMQ4-4J3R vulnerabilities

Vulnerabilities for packages: hello-world-golang, karpenter, crossplane, atlantis, caddy, kpt, kubernetes-csi-external-resizer, timoni, k9s, vault-k8s, osv-scanner, scorecard, sops, lazygit, tekton-chains, petname, cue, prometheus-beat-exporter, spegel, ksops, harbor-scanner-trivy, influx,...

GHSA-7JWH-3VRQ-Q3M8 vulnerabilities

Vulnerabilities for packages: spicedb, trillian, ferretdb, src, temporal-server, caddy, keda, amass, argo-workflows, kube-bench, kots, kine, telegraf, k3s,...

GHSA-M7WR-2XF7-CM9P vulnerabilities

Vulnerabilities for packages: trillian, caddy, vault, argo-workflows, kots, telegraf,...

CVE-2024-22871 vulnerabilities

Vulnerabilities for packages:...

GHSA-49GW-VXVF-FC2G vulnerabilities

Vulnerabilities for packages: timoni, k9s, wolfictl, kots, prometheus-beat-exporter, cni-plugins, nri-haproxy, libnvidia-container, docker-credential-acr-env, grype, slsa-verifier, kube-state-metrics, crossplane-provider-gcp, flux-image-automation-controller, nri-mssql, wait-for-port, nsc,...

CVE-2024-28180 vulnerabilities

Vulnerabilities for packages: dex, gomplate, terragrunt, grpc-health-probe, vexctl, sigstore-scaffolding, containerd, dgraph, wolfictl, spire-server, tekton-chains, apko, timestamp-authority, falcoctl, flux-kustomize-controller, rook, gitsign, istio-pilot-agent, keda, policy-controller, aactl,...

GHSA-45X7-PX36-X8W8 vulnerabilities

Vulnerabilities for packages: crossplane, atlantis, caddy, vault-k8s, prometheus-node-exporter, scorecard, sops, kots, temporal, tekton-chains, prometheus-mongodb-exporter, gitsign, istio-pilot-agent, prometheus-alertmanager, actions-runner-controller, frp, docker-credential-acr-env, grype,...

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: hello-world-golang, karpenter, crossplane, atlantis, caddy, kpt, kubernetes-csi-external-resizer, timoni, k9s, vault-k8s, osv-scanner, scorecard, sops, lazygit, tekton-chains, petname, cue, prometheus-beat-exporter, spegel, ksops, harbor-scanner-trivy, influx,...

GHSA-236W-P7WF-5PH8 vulnerabilities

Vulnerabilities for packages: timoni, k9s, wolfictl, kots, prometheus-beat-exporter, cni-plugins, nri-haproxy, libnvidia-container, docker-credential-acr-env, grype, slsa-verifier, kube-state-metrics, crossplane-provider-gcp, flux-image-automation-controller, nri-mssql, wait-for-port, nsc,...

Mirai-like Botnet Targets Zyxel NAS Devices in Europe for DDoS Attacks

Beware, Zyxel customers, and keep your devices up to...

byggeri.dk Open Redirect vulnerability OBB-3939674

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

hrms.bbmp.gov.in Cross Site Scripting vulnerability OBB-3939668

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

zorpidis.gr Cross Site Scripting vulnerability OBB-3939666

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

zarpanews.gr Cross Site Scripting vulnerability OBB-3939665

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

wadhefa.com Cross Site Scripting vulnerability OBB-3939663

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

uta-net.com Cross Site Scripting vulnerability OBB-3939662

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

ulvr.edu.ec Cross Site Scripting vulnerability OBB-3939654

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

tw.amazingtalker.com Cross Site Scripting vulnerability OBB-3939653

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

taxydromos.gr Cross Site Scripting vulnerability OBB-3939649

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

stalker.cd Cross Site Scripting vulnerability OBB-3939647

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

cashback.sparnord.dk Cross Site Scripting vulnerability OBB-3939642

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

snitcr.go.cr Cross Site Scripting vulnerability OBB-3939640

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

sloto.ge Cross Site Scripting vulnerability OBB-3939638

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

sld.cu Cross Site Scripting vulnerability OBB-3939637

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

sciencespo.fr Cross Site Scripting vulnerability OBB-3939635

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

rushumc-directory.doctor.com Cross Site Scripting vulnerability OBB-3939633

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

ref.ge Cross Site Scripting vulnerability OBB-3939630

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

ratsut.fi Cross Site Scripting vulnerability OBB-3939628

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

qianmu.org Cross Site Scripting vulnerability OBB-3939626

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

promoteur.angem.dz Cross Site Scripting vulnerability OBB-3939625

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

privatsikring.dk Cross Site Scripting vulnerability OBB-3939624

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...