CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

CVE-2023-6905

CVE-2023-6903

CVE-2023-6904

CVE-2023-3907

jc21.com Nginx Proxy Manager before 2.9.17 allows XSS during item deletion.

Compare

Choose a tag to compare

**v2.9.17**

![@jc21](https://avatars.githubusercontent.com/u/1518257?s=40&v=4) jc21 released this

· 2 commits to master since this release

v2.9.17

`063ac46`

This commit was created on GitHub.com and signed with GitHub’s **verified signature**.

GPG key ID: 4AEE18F83AFDEB23 Learn about vigilant mode.

Compare

Choose a tag to compare

**Changes**

*   Update resolvers.conf to break dns cache (thanks @omercnet)
*   Fix #1950 XSS when deleting items
*   Includes nginx-full pr 7 in base image: Added both lua-resty-http lua plugin and Crowdsec-Openresty-Bouncer (thanks @LePresidente)

**Docker images**

*   jc21/nginx-proxy-manager:latest
*   jc21/nginx-proxy-manager:2
*   jc21/nginx-proxy-manager:2.9.17

For future stability, please consider using `2.9.17` tag and following releases for this project using the "Watch" menu top right of this screen.

**Contributors**

*   ![@omercnet](https://avatars.githubusercontent.com/u/639682?v=4)
*   ![@LePresidente](https://avatars.githubusercontent.com/u/21981763?v=4)

omercnet and LePresidente

**Assets**2

*   Source code (zip)
*   Source code (tar.gz)

Headline

CVE-2022-28379: Release v2.9.17 · NginxProxyManager/nginx-proxy-manager

CVE: Latest News