Security
Headlines

Headlines Latest CVEs

Headline

GHSA-4r2f-6fm9-2qgh: Ecto lacks a protection mechanism

Ecto 2.2.0 lacks a certain protection mechanism associated with the interaction between is_nil and raise.

2 years ago

Ecto lacks a protection mechanism

Moderate severity GitHub Reviewed Published Jan 10, 2023 • Updated Jan 10, 2023

Related news

CVE-2017-20166: Add support for clauses with nil values in `Repo.get_by(!)/2` by tlux · Pull Request #2125 · elixir-ecto/ecto

Ecto 2.2.0 lacks a certain protection mechanism associated with the interaction between is_nil and raise.

2 years ago

ghsa: Latest News

GHSA-f679-254h-qhvj: Leantime allows Cross-Site Scripting (XSS)

13 hours ago

GHSA-95j3-435g-vjcp: Leantime affected by Improper Neutralization of HTML Tags

13 hours ago

GHSA-3hfj-qcvj-4hx8: Leantime has Missing Authorization Check for Host Parameter

13 hours ago

GHSA-38h4-fx85-qcx7: Exiv2 allows Use After Free

13 hours ago

GHSA-c39w-3pjx-qc7m: Leantime allows Stored Cross-Site Scripting (XSS)

14 hours ago