418sec/huntr

Releases0

Stars272

Public Roadmap | huntr.dev

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-28124 ↗	Apr 14, 2021Wednesday, 14 April 2021, 18:15	5.4 MEDIUM	3.5 LOW
Cross Site Scripting (XSS) in LavaLite 5.8.0 via the Address field.
CVE-2021-23338 ↗	Feb 15, 2021Monday, 15 February 2021, 16:15	6.6 MEDIUM	6.5 MEDIUM
This affects all versions of package qlib. The workflow function in cli part of qlib was using an unsafe YAML load function.
CVE-2020-7688 ↗	Jul 1, 2020Wednesday, 1 July 2020, 17:15	8.4 HIGH	4.6 MEDIUM
The issue occurs because tagName user input is formatted inside the exec function is executed without any checks.