Summary
AVideo Vulnerable to Unauthenticated .env File Exposure via Official Docker Compose Configuration
References
Related vulnerabilities
All Supply chain →- HIGHGHSA-WV27-2VQP-J7G5
Gogs has the ability to import local repositories via Mirror Settings
- LOWGHSA-7CFQ-5MHV-JRP9
Inspektor Gadget: Unprivileged container can crash USDT note parser via crafted ELF (no shipped gadget affected)
- HIGHGHSA-FFM6-VVPH-G5F5
OpenCTI has Semi-Blind SSRF via Unvalidated External URL in Data Ingestion Feature
- MEDIUMGHSA-3QQ3-668M-V9MJ
Gogs has a Denial of Service in repository/wiki file listing web pages
- MEDIUMGHSA-78VR-Q6CF-C7P6
Craft Commerce: Partial Payment Amount Without Lower Bound Validation
- MEDIUMGHSA-3J69-69WJ-XQX2
UltraJSON: Malformed/Truncated UTF-8 Accepted and Silently Rewritten in ujson.dumps()