5 matches found
GO-2025-3825 Harbor repository description page has Cross-site Scripting vulnerability in github.com/goharbor/harbor
Harbor repository description page has Cross-site Scripting vulnerability in github.com/goharbor/harbor. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from...
BIT-HARBOR-2025-32019 Harbor's repository description page allows for XSS
Harbor is an open source trusted cloud native registry project that stores, signs, and scans content. Versions 2.11.2 and below, as well as versions 2.12.0 and 2.13.0, contain a vulnerability where the markdown field in the info tab page can be exploited to inject XSS code. This is fixed in...
CVE-2025-32019 Harbor's repository description page allows for XSS
Harbor is an open source trusted cloud native registry project that stores, signs, and scans content. Versions 2.11.2 and below, as well as versions 2.12.0-rc1 and 2.13.0-rc1, contain a vulnerability where the markdown field in the info tab page can be exploited to inject XSS code. This is fixed ...
Harbor repository description page has Cross-site Scripting vulnerability
Impact In the Harbor repository information, it is possible to inject code resulting in a stored XSS issue. Patches Harbor v2.12.3 Harbor 2.11.3 Workarounds No References Credit [email protected]...
GHSA-F9VC-VF3R-PQQQ Harbor repository description page has Cross-site Scripting vulnerability
Impact In the Harbor repository information, it is possible to inject code resulting in a stored XSS issue. Patches Harbor v2.12.3 Harbor 2.11.3 Workarounds No References Credit [email protected]...