Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2022-23538github.com/sylabs/scs-library-client is the Go client for the Singular ...check details, might as well affect golang-github-apptainer-container-library-client
CVE-2023-26044react/http is an event-driven, streaming HTTP client and server implem ...check, is embedded inicinga-php-thirdparty, icingaweb2-module-reactbundle possibly affected
CVE-2023-32466Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bou ...check
CVE-2023-32471Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bou ...check
CVE-2023-38417Improper input validation for some Intel(R) PROSet/Wireless WiFi softw ...check, likely fixed in 20240513 tag update
CVE-2023-47210Improper input validation for some Intel(R) PROSet/Wireless WiFi softw ...check, likely fixed in 20240513 tag update
CVE-2023-48362XXE in the XML Format Plugin in Apache Drill version 1.19.0 and greate ...check
CVE-2023-49316In Math/BinaryField.php in phpseclib 3 before 3.0.34, excessively larg ...check if affecting ldap-account-manager or unused path
CVE-2023-50251php-svg-lib is an SVG file parsing / rendering library. Prior to versi ...check, other packages are embedding the library: civicrm, icinga-php-thirdparty and icingaweb2 to be checked
CVE-2023-50252php-svg-lib is an SVG file parsing / rendering library. Prior to versi ...check, other packages are embedding the library: civicrm, icinga-php-thirdparty and icingaweb2 to be checked
CVE-2023-50262Dompdf is an HTML to PDF converter for PHP. When parsing SVG images Do ...check sources embedding php-dompdf if affected
CVE-2024-0153Improper Restriction of Operations within the Bounds of a Memory Buffe ...check
CVE-2024-0981Okta Browser Plugin versions 6.5.0 through 6.31.0 (Chrome/Edge/Firefox ...check
CVE-2024-3209A vulnerability was found in UPX up to 4.2.2. It has been rated as cri ...check upstream report status, seems not filled as issue
CVE-2024-3246The LiteSpeed Cache plugin for WordPress is vulnerable to Cross-Site R ...check
CVE-2024-3297An issue in the Certificate Authenticated Session Establishment (CASE) ...check
CVE-2024-3454An implementation issue in the Connectivity Standards Alliance Matter ...check
CVE-2024-5861The WP EasyPay \u2013 Square for WordPress plugin for WordPress is vul ...check
CVE-2024-6094The WP ULike WordPress plugin before 4.7.1 does not sanitise and esca ...check
CVE-2024-6485A security vulnerability has been discovered in bootstrap that could e ...check
CVE-2024-6531A vulnerability has been identified in Bootstrap that exposes users to ...check
CVE-2024-6553The WP Meteor Website Speed Optimization Addon plugin for WordPress is ...check
CVE-2024-6571The Optimize Images ALT Text (alt tag) & names for SEO using AI plugin ...check
CVE-2024-6602A mismatch between allocator and deallocator could have lead to memory ...check how its related to src:nss and if src:nss tracking is necessary
CVE-2024-6609When almost out-of-memory an elliptic curve key which was never alloca ...check how its related to src:nss and if src:nss tracking is necessary
CVE-2024-6629The All-in-One Video Gallery plugin for WordPress is vulnerable to Sto ...check
CVE-2024-6750The Social Auto Poster plugin for WordPress is vulnerable to unauthori ...check
CVE-2024-6751The Social Auto Poster plugin for WordPress is vulnerable to Cross-Sit ...check
CVE-2024-6752The Social Auto Poster plugin for WordPress is vulnerable to Stored Cr ...check
CVE-2024-6753The Social Auto Poster plugin for WordPress is vulnerable to Stored Cr ...check
CVE-2024-6754The Social Auto Poster plugin for WordPress is vulnerable to unauthori ...check
CVE-2024-6755The Social Auto Poster plugin for WordPress is vulnerable to unauthori ...check
CVE-2024-6756The Social Auto Poster plugin for WordPress is vulnerable to arbitrary ...check
CVE-2024-6836The Funnel Builder for WordPress by FunnelKit \u2013 Customize WooComm ...check
CVE-2024-6930The WP Booking Calendar plugin for WordPress is vulnerable to Stored C ...check
CVE-2024-7027The WooCommerce - PDF Vouchers plugin for WordPress is vulnerable to a ...check
CVE-2024-21527Versions of the package github.com/gotenberg/gotenberg/v8/pkg/gotenber ...check
CVE-2024-21583Versions of the package github.com/gitpod-io/gitpod/components/server/ ...check
CVE-2024-22420JupyterLab is an extensible environment for interactive and reproducib ...check completeness, src:jupyter-notebook?
CVE-2024-22421JupyterLab is an extensible environment for interactive and reproducib ...check completeness, src:jupyter-notebook?
CVE-2024-28180Package jose aims to provide an implementation of the Javascript Objec ...check completeness
CVE-2024-32673Improper Validation of Array Index vulnerability in Samsung Open Sourc ...check
CVE-2024-33899RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attacke ...check
CVE-2024-36050Nix through 2.22.1 mishandles certain usage of hash caches, which make ...check details and verify if same code (and only then) is present in guix
CVE-2024-38164An improper access control vulnerability in GroupMe allows an a unauth ...check
CVE-2024-38176An improper restriction of excessive authentication attempts in GroupM ...check
CVE-2024-39676Exposure of Sensitive Information to an Unauthorized Actor vulnerabili ...check
CVE-2024-39906A command injection vulnerability was found in the IndieAuth functiona ...check
CVE-2024-40075Laravel v11.x was discovered to contain an XML External Entity (XXE) v ...check, maybe src:php-laravel, but unclear report https://gitee.com/Q16G/laravel_bug/blob/master/laravelBug.md
CVE-2024-40642The netty incubator codec.bhttp is a java language binary http parser. ...check
CVE-2024-40644gitoxide An idiomatic, lean, fast & safe pure Rust implementation of G ...check
CVE-2024-41129The ops library is a Python framework for developing and testing Kuber ...check
CVE-2024-41656Sentry is an error tracking and performance monitoring platform. Start ...check

Search for package or bug name: Reporting problems