GHSA-4jwc-w2hc-78qv: Tonic has remotely exploitable denial of service vulnerability

GHSA-x8gm-j36p-fppf: LibreNMS vulnerable to Stored Cross-site Scripting via File Upload

GHSA-fhqq-8f65-5xfc: Improper Input Validation in Buildah and Podman

GHSA-3h3x-2hwv-hr52: Golang FIPS OpenSSL has a Use of Uninitialized Variable vulnerability

GHSA-mc76-5925-c5p6: Link Following in github.com/containers/common

hawtio 2.17.2 is vulnerable to Path Traversal. it is possible to input malicious zip files, which can result in the high-risk files after decompression being stored in any location, even leading to file overwrite.

**hawtio vulnerable to Path Traversal**

Moderate severity GitHub Reviewed Published Jun 1, 2023 to the GitHub Advisory Database • Updated Jun 6, 2023

Headline

GHSA-p223-c4w6-q454: hawtio vulnerable to Path Traversal

Related news

ghsa: Latest News