FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
4e6875a2-a126-11ea-b385-08002728f74ckaminari -- potential XSS vulnerability

Kaminari Security Advisories:

There was a vulnerability in versions of Kaminari that would allow an attacker to inject arbitrary code into pages with pagination links.

The 1.2.1 gem including the patch has already been released.

All past released versions are affected by this vulnerability.


Discovery 2020-04-22
Entry 2020-05-28
rubygem-kaminari-core
lt 1.2.1

https://github.com/kaminari/kaminari/security/advisories/GHSA-r5jw-62xg-j433
https://github.com/kaminari/kaminari/blob/master/CHANGELOG.md#121
https://github.com/kaminari/kaminari/pull/1020
CVE-2020-11082