Disclosed Vulnerabilities | Snyk

All disclosed vulnerabilities by Snyk

- H
Command Injection in pdf-image (npm)

Discovered by Miguel Coimbra

12 Mar 2024
- H
Use of Uninitialized Variable in fastecdsa (pip)

Discovered by Vladimir Cherepanov

23 Feb 2024
- M
Information Exposure in sanitize-html (npm)

Discovered by Vsevolod Kokorin (Slonser) of Solidlab

23 Feb 2024
- M
Improper Restriction of Excessive Authentication Attempts in github.com/greenpau/caddy-security (golang)

Discovered by Maciej Domanski, Travis Peters, David Pokora

16 Feb 2024
- M
HTTP Header Injection in github.com/greenpau/caddy-security (golang)

Discovered by Maciej Domanski, Travis Peters, David Pokora

16 Feb 2024
- M
Server-side Request Forgery (SSRF) in github.com/greenpau/caddy-security (golang)

Discovered by Maciej Domanski, Travis Peters, David Pokora

16 Feb 2024
- M
Open Redirect in github.com/greenpau/caddy-security (golang)

Discovered by Maciej Domanski, Travis Peters, David Pokora

16 Feb 2024
- M
Cross-site Scripting (XSS) in github.com/greenpau/caddy-security (golang)

Discovered by Maciej Domanski, Travis Peters, David Pokora

16 Feb 2024
- M
Insecure Randomness in github.com/greenpau/caddy-security (golang)

Discovered by Maciej Domanski, Travis Peters, David Pokora

16 Feb 2024
- M
Authentication Bypass by Spoofing in github.com/greenpau/caddy-security (golang)

Discovered by Maciej Domanski, Travis Peters, David Pokora

16 Feb 2024