3 matches found
CVE-2022-41944 Discourse users can see notifications for topics they no longer have access to
Discourse is an open-source discussion platform. In stable versions prior to 2.8.12 and beta or tests-passed versions prior to 2.9.0.beta.13, under certain conditions, a user can see notifications for topics they no longer have access to. If there is sensitive information in the topic title, it...
Laravel platform cross-site scripting vulnerability
Laravel platform is a free Laravel extension library from the Laravel team Laravel. The extension library has basic business logic to quickly build admin pages and basic pages. A cross-site scripting vulnerability exists in platform versions prior to 9.4.4, which stems from an inline attribute th...
Unsafe Dependency Resolution
Overview com.diffplug.gradle.spotless:spotless-eclipse-cdt is a code formatting library. Affected versions of this package are vulnerable to Unsafe Dependency Resolution due to resolving dependencies over an insecure channel http. If the build occurred over an insecure connection, a malicious use...