5 matches found
MiracleLinux 8 : grafana-9.2.10-20.el8_10 (AXSA:2024-8935:16)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8935:16 advisory. golang-fips: Golang FIPS zeroed buffer CVE-2024-9355 dompurify: nesting-based mutation XSS vulnerability CVE-2024-47875 Tenable has extracted the...
SUSE CVE-2023-22462
Grafana is an open-source platform for monitoring and observability. On 2023-01-01 during an internal audit of Grafana, a member of the security team found a stored XSS vulnerability affecting the core plugin "Text". The stored XSS vulnerability requires several user interactions in order to be...
PT-2023-16371 · Publify · Publify
Name of the Vulnerable Software and Affected Versions: publify/publify versions prior to 9.2.10 Description: The issue concerns weak password requirements in the GitHub repository publify/publify. Recommendations: For versions prior to 9.2.10, update to version 9.2.10 or later to resolve the issu...
Publify 安全漏洞
Publify is a simple but full-featured web publishing software. A security vulnerability exists in Publify versions prior to 9.2.10 that stems from insecure storage of sensitive information...
GitLab Cross-Site Scripting Vulnerability (CNVD-2018-08692)
GitLab is an open source application developed using Ruby on Rails that implements a self-hosted Git project repository that can be accessed through a web interface for public and private projects. A cross-site scripting vulnerability exists in GitLab CE and EE versions 9.2 through 10.4. The...