Homepage
About Snyk

sickrage@10.0.0.dev27 vulnerabilities

Automatic Video Library Manager for TV Shows

Go back to all versions of this package
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the sickrage package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Cross-site Scripting (XSS)

sickrage is an Automatic Video Library Manager for TV Shows

Affected versions of this package are vulnerable to Cross-site Scripting (XSS) due to user input not being validated properly in the quicksearch feature. Therefore, an attacker can steal a user's sessionID to masquerade as a victim user, and carry out any actions in the context of the user.

How to fix Cross-site Scripting (XSS)?

Upgrade sickrage to version 10.0.11.dev2 or higher.

[9.3.54.dev1,10.0.11.dev2)
  • M
Cross-site Scripting (XSS)

sickrage is an Automatic Video Library Manager for TV Shows

Affected versions of this package are vulnerable to Cross-site Scripting (XSS) due to user input not being validated properly when processed by the server. Therefore, an attacker can inject arbitrary JavaScript code inside the application, and possibly steal a user’s sensitive information.

How to fix Cross-site Scripting (XSS)?

Upgrade sickrage to version 10.0.11.dev2 or higher.

[,10.0.11.dev2)
Go back to all versions of this package