4 matches found
Romeo 访问控制错误漏洞
Romeo is an open-source Go application code coverage calculation tool developed by CTFer.io. Versions of Romeo prior to 0.2.1 contained a access control vulnerability, which was caused by improper network policy configuration and could lead to lateral movement...
HTMLSanitizer 跨站脚本漏洞
HTMLSanitizer is a JuliaHub open source HTML formatting software. A cross-site scripting vulnerability exists in versions of HTMLSanitizer prior to 0.2.1, which stems from a cross-site scripting attack caused by incorrectly escaping the contents of the style tag...
sigstore Policy Controller 数据伪造问题漏洞
sigstore Policy Controller is a tool from sigstore, Inc. A data forgery issue vulnerability exists in versions prior to Policy Controller 0.2.1, which stems from a reporting false positive in Policy Controller that results in an admission when it should not have been...
CVE-2018-3787
Path traversal in simplehttpserver v0.2.1 allows listing any file on the server...