Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-1022: chore: Sanitize html content (#4498) · chatwoot/chatwoot@27ddd77

Cross-site Scripting (XSS) - Stored in GitHub repository chatwoot/chatwoot prior to 2.5.0.

CVE
Open in Source
#xss#web#nodejs#js#git#java

Permalink

Showing with 52 additions and 29 deletions.

  1. +1 −1 app/javascript/dashboard/components/widgets/conversation/ReplyBox.vue
  2. +1 −1 app/javascript/dashboard/components/widgets/conversation/bubble/Text.vue
  3. +2 −2 app/javascript/dashboard/modules/contact/components/MergeContactSummary.vue
  4. +1 −1 app/javascript/dashboard/modules/notes/components/ContactNote.vue
  5. +1 −1 app/javascript/dashboard/routes/auth/Signup.vue
  6. +3 −1 app/javascript/dashboard/routes/dashboard/conversation/ContactCustomAttributes.vue
  7. +1 −1 app/javascript/dashboard/routes/dashboard/conversation/search/SearchMessageItem.vue
  8. +1 −1 app/javascript/dashboard/routes/dashboard/settings/SettingsSubPageHeader.vue
  9. +1 −1 app/javascript/dashboard/routes/dashboard/settings/agents/Index.vue
  10. +1 −1 app/javascript/dashboard/routes/dashboard/settings/attributes/CustomAttribute.vue
  11. +1 −1 app/javascript/dashboard/routes/dashboard/settings/automation/Index.vue
  12. +1 −1 app/javascript/dashboard/routes/dashboard/settings/canned/Index.vue
  13. +1 −1 app/javascript/dashboard/routes/dashboard/settings/inbox/Index.vue
  14. +1 −1 app/javascript/dashboard/routes/dashboard/settings/integrationapps/MultipleIntegrationHooks.vue
  15. +3 −1 app/javascript/dashboard/routes/dashboard/settings/integrations/IntegrationHelpText.vue
  16. +1 −1 app/javascript/dashboard/routes/dashboard/settings/integrations/Webhook.vue
  17. +1 −1 app/javascript/dashboard/routes/dashboard/settings/labels/Index.vue
  18. +1 −1 app/javascript/dashboard/routes/dashboard/settings/teams/Index.vue
  19. +2 −1 app/javascript/packs/application.js
  20. +2 −0 app/javascript/packs/widget.js
  21. +2 −2 app/javascript/shared/components/emoji/EmojiInput.vue
  22. +1 −1 app/javascript/widget/components/AgentMessageBubble.vue
  23. +1 −1 app/javascript/widget/components/ChatHeader.vue
  24. +3 −3 app/javascript/widget/components/ChatHeaderExpanded.vue
  25. +4 −1 app/javascript/widget/components/UnreadMessage.vue
  26. +1 −1 app/javascript/widget/components/UserMessageBubble.vue
  27. +1 −0 package.json
  28. +12 −0 yarn.lock

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE