Homepage

sickrage@10.0.6.dev1 vulnerabilities

Automatic Video Library Manager for TV Shows

  • latest version

    10.0.71.dev2

  • latest non vulnerable version

    10.0.71.dev2

  • first published

    8 years ago

  • latest version published

    1 years ago

  • licenses detected

  • View sickrage package health on Snyk Advisor  (opens in a new tab)
    • Go back to all versions of this package
    Report a new vulnerability Found a mistake?

    Direct Vulnerabilities

    Known vulnerabilities in the sickrage package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • M
    Cross-site Scripting (XSS)

    sickrage is an Automatic Video Library Manager for TV Shows

    Affected versions of this package are vulnerable to Cross-site Scripting (XSS) due to user input not being validated properly in the quicksearch feature. Therefore, an attacker can steal a user's sessionID to masquerade as a victim user, and carry out any actions in the context of the user.

    How to fix Cross-site Scripting (XSS)?

    Upgrade sickrage to version 10.0.11.dev2 or higher.

    [9.3.54.dev1,10.0.11.dev2)
    • M
    Cross-site Scripting (XSS)

    sickrage is an Automatic Video Library Manager for TV Shows

    Affected versions of this package are vulnerable to Cross-site Scripting (XSS) due to user input not being validated properly when processed by the server. Therefore, an attacker can inject arbitrary JavaScript code inside the application, and possibly steal a user’s sensitive information.

    How to fix Cross-site Scripting (XSS)?

    Upgrade sickrage to version 10.0.11.dev2 or higher.

    [,10.0.11.dev2)
    Go back to all versions of this package