-
## Component Details
- **Exploit Maturity**: no-known-exploit
- **Vulnerable Package**: -
- **Current Version**: -
- **Vulnerable Version(s)**: >[,3.0.12)
- **Vulnerable Path**: >null
## Overview
[…
-
# Description
https://github.com/department-of-veterans-affairs/vets-website/security/dependabot/134
# Acceptance Criteria
- [ ] `octokit` has been upgraded to a patched version and dependabot is no …
-
Vulnerable Library - zipp-3.13.0-py3-none-any.whl
Backport of pathlib-compatible object wrapper for zip files
Library home page: https://files.pythonhosted.org/packages/95/7b/1608a7344743f54a8c072d6…
-
Vulnerable Library - Flask-2.2.5-py3-none-any.whl
Path to dependency file: /SSRFmap/requirements.txt
Path to vulnerable library: /SSRFmap/requirements.txt
Found in HEAD commit: ebae41bb0937b6da8…
-
# Description
https://github.com/department-of-veterans-affairs/vets-website/security/dependabot/8
# Acceptance Criteria
- [ ] The denial of service issue with `semver-regex` has been resolved and de…
-
# Description
https://github.com/department-of-veterans-affairs/vets-website/security/dependabot/55
# Acceptance Criteria
- [ ] `scss-tokenizer` has been upgraded to a patched version and dependabot …
-
The recursive #Include system cannot handle an estate number larger than about 800 due to the recursion in it, and the 1 MB stack space. The estate number can be almost unlimited in DreamGrid as it c…
-
Hello,
Running npm audit for _mongodb-migrations v0.85_ throws the following warning. Is there/will there be a package update? Or best way to address this? Thanks!
node v12.13.0
npm@6.14.11
…
-
Issue description
-
# Handle
danb
# Vulnerability details
## Impact
in the first call to requery, If the oracle returns newProtocolEquity = 0, it can never be changed and would lead to denial of service of the system…