Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2013-10005The RemoteAddr and LocalAddr methods on the returned net.Conn may call ...check
CVE-2020-10650A deserialization flaw was discovered in jackson-databind through 2.9. ...check
CVE-2020-19947Cross Site Scripting vulnerability found in Markdown Edit allows a rem ...check
CVE-2020-22647An issue found in DepositGame v.1.0 allows an attacker to gain sensiti ...check
CVE-2020-27507The Kamailio SIP before 5.5.0 server mishandles INVITE requests with d ...check
CVE-2021-30134php-mod/curl (a wrapper of the PHP cURL extension) before 2.3.2 allows ...check
CVE-2021-31637An issue found in UwAmp v.1.1, 1.2, 1.3, 2.0, 2.1, 2.2, 2.2.1, 3.0.0, ...check
CVE-2021-32862The GitHub Security Lab discovered sixteen ways to exploit a cross-sit ...check details, schould affect src:nbconvert
CVE-2021-36493Buffer Overflow vulnerability in pdfimages in xpdf 4.03 allows attacke ...check
CVE-2021-36821Unauth. Stored Cross-Site Scripting (XSS) vulnerability in WPMU DEV Fo ...check
CVE-2021-37491An issue discovered in src/wallet/wallet.cpp in Dogecoin Project Dogec ...check
CVE-2021-37819PDF Labs pdftk-java v3.2.3 was discovered to contain an infinite loop ...check impact on other sources embedding lowagie/text/pdf/PdfReader.java
CVE-2021-45423A Buffer Overflow vulnerabilityexists in Pev 0.81 via the pe_exports f ...check
CVE-2022-23492go-libp2p is the offical libp2p implementation in the Go programming l ...check
CVE-2022-23538github.com/sylabs/scs-library-client is the Go client for the Singular ...check details, might as well affect golang-github-apptainer-container-library-client
CVE-2022-25927Versions of the package ua-parser-js from 0.7.30 and before 0.7.33, fr ...check, the ReDoS issue seems still present in 0.8.1+ds+~0.7.36-2 altough this is said to contain the fix
CVE-2022-26080Use of Insufficiently Random Values vulnerability in ABB Pulsar Plus S ...check
CVE-2022-34148Improper Neutralization of Input During Web Page Generation ('Cross-si ...check
CVE-2022-34406Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34407Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34408Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34409Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34410Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34411Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34412Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34413Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34414Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34415Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34416Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34417Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34418Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34419Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34420Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34421Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34422Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-34423Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM co ...check
CVE-2022-37708Docker version 20.10.15, build fd82621 is vulnerable to Insecure Permi ...check, seems like a negligible security impact issue, and might be marked unimportant
CVE-2022-38063Cross-Site Request Forgery (CSRF) vulnerability in Social Login WP plu ...check
CVE-2022-38971Stored Cross-Site Scripting (XSS) vulnerability in ThemeKraft Post For ...check
CVE-2022-40699Cross-Site Scripting (XSS) vulnerability in Dario Curvino Yasr – ...check
CVE-2022-41554Stored Cross-Site Scripting (XSS) vulnerability in John West Slideshow ...check
CVE-2022-43461Stored Cross-Site Scripting (XSS) vulnerability in John West Slideshow ...check
CVE-2022-43604An out-of-bounds write vulnerability exists in the GetAttributeList at ...check
CVE-2022-43605An out-of-bounds write vulnerability exists in the SetAttributeList at ...check
CVE-2022-43606A use-of-uninitialized-pointer vulnerability exists in the Forward Ope ...check
CVE-2022-45814Stored Cross-Site Scripting (XSS) vulnerability in Fabian von Allmen W ...check
CVE-2022-45817Cross-Site Scripting (XSS) vulnerability in Erin Garscadden GC Testimo ...check
CVE-2022-46854Cross-Site Request Forgery (CSRF) vulnerability in Obox Themes Launchp ...check
CVE-2022-46867Cross-Site Request Forgery (CSRF) vulnerability in Chasil Universal St ...check
CVE-2022-47591Reflected Cross-Site Scripting (XSS) vulnerability in Mickael Austoni ...check
CVE-2022-47592Reflected Cross-Site Scripting (XSS) vulnerability in Dmytriy.Cooperma ...check
CVE-2023-0027Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerab ...check
CVE-2023-0320Improper Neutralization of Input During Web Page Generation ('Cross-si ...check
CVE-2023-0598GE Digital Proficy iFIX 2022, GE Digital Proficy iFIX v6.1, and GE Dig ...check
CVE-2023-0628Docker Desktop before 4.17.0 allows an attacker to execute an arbitrar ...check
CVE-2023-0629Docker Desktop before 4.17.0 allows an unprivileged user to bypass Enh ...check
CVE-2023-0681Rapid7 InsightVM versions 6.6.178 and lower suffers from an open redir ...check
CVE-2023-1248Improper Input Validation vulnerability in OTRS AG OTRS (Ticket Action ...check
CVE-2023-1250Improper Input Validation vulnerability in OTRS AG OTRS (ACL modules), ...check
CVE-2023-1436An infinite recursion is triggered in Jettison when constructing a JSO ...check
CVE-2023-21449Improper access control vulnerability in Call application prior to SMR ...check
CVE-2023-21452Improper usage of implicit intent in Bluetooth prior to SMR Mar-2023 R ...check
CVE-2023-21453Improper input validation vulnerability in SoftSim TA prior to SMR Mar ...check
CVE-2023-21454Improper authorization in Samsung Keyboard prior to SMR Mar-2023 Relea ...check
CVE-2023-21455Improper authorization implementation in Exynos baseband prior to SMR ...check
CVE-2023-21456Path traversal vulnerability in Galaxy Themes Service prior to SMR Mar ...check
CVE-2023-21457Improper access control vulnerability in Bluetooth prior to SMR Mar-20 ...check
CVE-2023-21458Improper privilege management vulnerability in PhoneStatusBarPolicy in ...check
CVE-2023-21459Use after free vulnerability in decon driver prior to SMR Mar-2023 Rel ...check
CVE-2023-21460Improper authentication in SecSettings prior to SMR Mar-2023 Release 1 ...check
CVE-2023-21461Improper authorization vulnerability in AutoPowerOnOffConfirmDialog in ...check
CVE-2023-21462The sensitive information exposure vulnerability in Quick Share Agent ...check
CVE-2023-21463Improper access control vulnerability in MyFiles application prior to ...check
CVE-2023-21464Improper access control in Samsung Calendar prior to versions 12.4.02. ...check
CVE-2023-21465Improper access control vulnerability in BixbyTouch prior to version 3 ...check
CVE-2023-22288HTML Email Injection in Tribe29 Checkmk <=2.1.0p23; <=2.0.0p34, ...check
CVE-2023-22678Cross-Site Request Forgery (CSRF) vulnerability in Rafael Dery Superio ...check
CVE-2023-22679Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Nico ...check
CVE-2023-22680Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Alta ...check
CVE-2023-22681Cross-Site Request Forgery (CSRF) vulnerability in Aarvanshinfotech On ...check
CVE-2023-22682Reflected Cross-Site Scripting (XSS) vulnerability in Manuel Masia | P ...check
CVE-2023-22880Zoom for Windows clients before version 5.13.3, Zoom Rooms for Windows ...check
CVE-2023-22881Zoom clients before version 5.13.5 contain a STUN parsing vulnerabilit ...check
CVE-2023-22882Zoom clients before version 5.13.5 contain a STUN parsing vulnerabilit ...check
CVE-2023-22883Zoom Client for IT Admin Windows installers before version 5.13.5 cont ...check
CVE-2023-23622Discourse is an open-source discussion platform. Prior to version 3.0. ...check
CVE-2023-23718Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in Esstat17 Pa ...check
CVE-2023-23721Cross-Site Request Forgery (CSRF) vulnerability in David Gwyer Admin L ...check
CVE-2023-23935Discourse is an open-source messaging platform. In versions 3.0.1 and ...check
CVE-2023-24180Libelfin v0.3 was discovered to contain an integer overflow in the loa ...check
CVE-2023-24381Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in NsTh ...check
CVE-2023-24571Dell BIOS contains an Improper Input Validation vulnerability. A local ...check
CVE-2023-24671VX Search v13.8 and v14.7 was discovered to contain an unquoted servic ...check
CVE-2023-24678A vulnerability in Centralite Pearl Thermostat 0x04075010 allows attac ...check
CVE-2023-25064Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Matt ...check
CVE-2023-25344An issue was discovered in swig-templates thru 2.0.4 and swig thru 1.4 ...check
CVE-2023-25345Directory traversal vulnerability in swig-templates thru 2.0.4 and swi ...check
CVE-2023-25782Auth. (admin+) vulnerability in Second2none Service Area Postcode Chec ...check
CVE-2023-25794Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in Mighty Digi ...check
CVE-2023-25795Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in WP-master.I ...check
CVE-2023-26113Versions of the package collection.js before 6.8.1 are vulnerable to P ...check
CVE-2023-26513Excessive Iteration vulnerability in Apache Software Foundation Apache ...check
CVE-2023-27585PJSIP is a free and open source multimedia communication library writt ...check
CVE-2023-27586CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Pr ...check
CVE-2023-28105go-used-util has commonly used utility functions for Go. Versions prio ...check
CVE-2023-28115Snappy is a PHP library allowing thumbnail, snapshot or PDF generation ...check
CVE-2023-28118kaml provides YAML support for kotlinx.serialization. Prior to version ...check
CVE-2023-28424Soko if the code that powers packages.gentoo.org. Prior to version 1.0 ...check
CVE-2023-28426savg-sanitizer is a PHP SVG/XML Sanitizer. A bypass has been found in ...check
CVE-2023-28428PDFio is a C library for reading and writing PDF files. In versions 1. ...check

Search for package or bug name: Reporting problems