RSS   Vulnerabilities for 'Crater'   RSS

2022-03-29
 
CVE-2022-1032

CWE-502
 

 
Insecure deserialization of not validated module file in GitHub repository crater-invoice/crater prior to 6.0.6.

 
2022-03-23
 
CVE-2022-1033

CWE-434
 

 
Unrestricted Upload of File with Dangerous Type in GitHub repository crater-invoice/crater prior to 6.0.6.

 
2022-03-21
 
CVE-2022-0514

NVD-CWE-noinfo
 

 
Business Logic Errors in GitHub repository crater-invoice/crater prior to 6.0.5.

 
 
CVE-2022-0515

CWE-352
 

 
Cross-Site Request Forgery (CSRF) in GitHub repository crater-invoice/crater prior to 6.0.4.

 
2022-01-27
 
CVE-2022-0372

CWE-79
 

 
Cross-site Scripting (XSS) - Stored in Packagist bytefury/crater prior to 6.0.2.

 
2022-01-26
 
CVE-2022-0203

CWE-862
 

 
Improper Access Control in GitHub repository crater-invoice/crater prior to 6.0.2.

 
2022-01-17
 
CVE-2022-0242

CWE-434
 

 
Unrestricted Upload of File with Dangerous Type in GitHub repository crater-invoice/crater prior to 6.0.

 
2022-01-12
 
CVE-2021-4080

CWE-434
 

 
crater is vulnerable to Unrestricted Upload of File with Dangerous Type

 


Copyright 2024, cxsecurity.com

 

Back to Top