Security Advisories - francoisjacquet/rosariosis

francoisjacquet/rosariosis Security Advisories for v5.7.6 (16)

[LOW] RosarioSIS cross site scripting vulnerability

PKSA-8hrn-87xj-qc28 CVE-2024-3138 GHSA-r32g-w9cv-9fgc

Affected version: <=11.5.1

Reported by:
GitHub
[HIGH] RosarioSIS Stores Sensitive Data in a Mechanism without Access Control

PKSA-bykd-vq9v-9sqg CVE-2023-2665 GHSA-36cm-h8gv-mg97

Affected version: <11.0

Reported by:
GitHub
[MEDIUM] RosarioSIS vulnerable to CSV Injection

PKSA-sqbj-6c8j-qvsr CVE-2023-29918 GHSA-f8hp-grmr-pp7j

Affected version: <=10.8.4

Reported by:
GitHub
[MEDIUM] RosarioSIS improper access control vulnerability

PKSA-k1fj-5hdp-gntb CVE-2023-2202 GHSA-g66v-3v62-g375

Affected version: <10.9.3

Reported by:
GitHub
[HIGH] RosarioSIS Improper Access Control vulnerability

PKSA-qc8b-mrzj-39wp CVE-2023-0994 GHSA-prjg-28jg-m3p5

Affected version: <10.8.2

Reported by:
GitHub
[HIGH] RosarioSIS before 10.1 vulnerable to Improper Handling of Length Parameter Inconsistency

PKSA-5nzc-47j6-mn9r CVE-2022-2714 GHSA-vh4m-mw8w-g4w8

Affected version: <10.1

Reported by:
GitHub
[MEDIUM] francoisjacquet/rosariosis vulnerable to Cross-Site Scripting (XSS)

PKSA-9pzj-8jzg-q4fm CVE-2022-3072 GHSA-2mh7-qxcw-q39g

Affected version: <8.9.3

Reported by:
GitHub
[CRITICAL] SQL Injection in RosarioSIS

PKSA-v13h-dnwd-xy3k CVE-2022-2067 GHSA-3pqv-6pm3-g46j

Affected version: <9.0

Reported by:
GitHub
[MEDIUM] Cross site scripting in francoisjacquet/rosariosis

PKSA-j5z9-4cf4-gxtr CVE-2022-2036 GHSA-4hpr-hh77-6q9p

Affected version: <9.1

Reported by:
GitHub
[MEDIUM] Cross-site Scripting in RosarioSIS

PKSA-xdv7-7ydy-vf3g CVE-2022-1997 GHSA-wjh9-344g-vc49

Affected version: <9.0

Reported by:
GitHub
[CRITICAL] SQL injection in francoisjacquet/rosariosis

PKSA-rwzp-mbqw-hz3t CVE-2021-44567 GHSA-82rr-mq4r-p4r3

Affected version: <7.6.1

Reported by:
GitHub
[MEDIUM] Cross site scripting in francoisjacquet/rosariosis

PKSA-q84p-6wyx-2mdx CVE-2021-44565 GHSA-44cg-qcpr-fwjh

Affected version: <7.6.1

Reported by:
GitHub
[MEDIUM] Cross-site Scripting in RosarioSIS

PKSA-pqqb-nf3j-8b5t CVE-2020-15721 GHSA-6vc5-v7hw-h5h2

Affected version: <6.8

Reported by:
GitHub
[MEDIUM] RosarioSIS XSS Vulnerability

PKSA-w98c-553n-cmm4 CVE-2021-45416 GHSA-287r-574x-f4h4

Affected version: <=8.2.1

Reported by:
GitHub
[CRITICAL] SQL Injection in rosariosis

PKSA-rh7j-2bck-3zz9 CVE-2021-44427 GHSA-wf5p-f5xr-c4jj

Affected version: <8.1.1

Reported by:
GitHub
[MEDIUM] Reflected cross-site scripting in francoisjacquet/rosariosis

PKSA-9ctp-xv88-kn9w CVE-2020-13278 GHSA-4cx9-7xqc-2jxm

Affected version: <6.5.1

Reported by:
GitHub

francoisjacquet/rosariosis Security Advisories for v5.7.6 (16)

[LOW] RosarioSIS cross site scripting vulnerability

[HIGH] RosarioSIS Stores Sensitive Data in a Mechanism without Access Control

[MEDIUM] RosarioSIS vulnerable to CSV Injection

[MEDIUM] RosarioSIS improper access control vulnerability

[HIGH] RosarioSIS Improper Access Control vulnerability

[HIGH] RosarioSIS before 10.1 vulnerable to Improper Handling of Length Parameter Inconsistency

[MEDIUM] francoisjacquet/rosariosis vulnerable to Cross-Site Scripting (XSS)

[CRITICAL] SQL Injection in RosarioSIS

[MEDIUM] Cross site scripting in francoisjacquet/rosariosis

[MEDIUM] Cross-site Scripting in RosarioSIS

[CRITICAL] SQL injection in francoisjacquet/rosariosis

[MEDIUM] Cross site scripting in francoisjacquet/rosariosis

[MEDIUM] Cross-site Scripting in RosarioSIS

[MEDIUM] RosarioSIS XSS Vulnerability

[CRITICAL] SQL Injection in rosariosis

[MEDIUM] Reflected cross-site scripting in francoisjacquet/rosariosis