GHSA-w7qr-q9fh-fj35: Dozzle uses unsafe hash for passwords

GHSA-mq92-jr35-ffpc: open-webui allows enumeration of file names and traversal of directories by observing the error messages

GHSA-xcvc-5hgv-phqg: open-webui Insecure Direct Object Reference (IDOR) vulnerability

GHSA-54f4-v6v9-9q82: open-webui allows writing and deleting arbitrary files

GHSA-7qmx-3fpx-r45m: Wasmtime race condition could lead to WebAssembly control-flow integrity and type safety violations

FacturaScripts 2022.08 and prior is vulnerable to cross-site scripting. A patch is available on the `master` branch of the repository and anticipated to be part of version 2022.09.

**Cross-site Scripting in FacturaScripts**

Moderate severity GitHub Reviewed Published Jun 4, 2022 • Updated Jun 6, 2022

Headline

GHSA-r7jw-mg27-j839: Cross-site Scripting in FacturaScripts

Related news

ghsa: Latest News