CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

CVE-2023-6905

CVE-2023-6903

CVE-2023-6904

CVE-2023-3907

Cross-site Scripting (XSS) - Generic in GitHub repository bigbluebutton/bigbluebutton prior to 2.4.0.

@@ -32,9 +32,7 @@ git clone https://github.com/mconf/ep\_redis\_publisher.git

npm pack ./ep\_redis\_publisher

npm install ./ep\_redis\_publisher-\*.tgz

  

# npm install ep\_cursortrace

# using mconf's fork due to https://github.com/ether/ep\_cursortrace/pull/25 not being accepted upstream

npm install git+https://github.com/mconf/ep\_cursortrace.git

npm install ep\_cursortrace

npm install ep\_disable\_chat

  

# For some reason installing from github using npm 7.5.2 gives

Headline

CVE-2021-4143: build: use official ep_cursortrace · bigbluebutton/bigbluebutton@62040bd

npm install ep_cursortrace

using mconf’s fork due to https://github.com/ether/ep_cursortrace/pull/25 not being accepted upstream

For some reason installing from github using npm 7.5.2 gives

CVE: Latest News