Name of the Vulnerable Software and Affected Versions: Coolify versions prior to v4.0.0-beta.420.6 Description: Coolify is susceptible to a stored cross-site scripting (XSS) attack within the project ...
Continue Reading
September 02, 2025
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. A code execution vulnerability exists in the WebSocket functiona ...
Continue Reading
September 02, 2025
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. An issue in OpenResty lua-nginx-module v.0.10.26 and before allo ...
Continue Reading
September 02, 2025
github.com/komari-monitor/komari, is vulnerable to Cross-Site WebSocket Hijacking (CSWSH). The vulnerability is due to disabled origin checking, which allows an attacker to hijack authenticated user W ...
Continue Reading
September 02, 2025
Coolify versions prior to v4.0.0-beta.420.6 are vulnerable to a stored cross-site scripting (XSS) attack in the project creation workflow. An authenticated user with low privileges can create a projec ...
Continue Reading
September 02, 2025
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. In lighttpd 1.4.65, mod_wstunnel does not initialize a handler f ...
Continue Reading
September 02, 2025
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. ws is an open source WebSocket client and server library for Nod ...
Continue Reading
September 02, 2025
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. Cap'n Proto is a data interchange format and capability-bas ...
Continue Reading
September 02, 2025
Back to Main
