@OpenSourceHacks profile picture
Open Source CVEs @OpenSourceHacks

Keeping you up to date with CVEs found in open source software.

Joined November 2021
  • Tweets 1,189
  • Following 0
  • Followers 634
Photos and videos
(CVE-2023-2730): Cross-site Scripting (XSS) - Stored in pimcore/pimcore. huntr.dev/bounties/6c6f5c26-… Disclosed by huntr.dev/users/duyhm1995, fixed by pimcore maintainers... #opensource #CVE #bugbounty #security #vulnerability
250
(CVE-2023-2675): Improper Restriction of Excessive Authentication Attempts in linagora/twake. huntr.dev/bounties/474d3b39-… Disclosed by huntr.dev/users/jeffreygaor, fixed by @Linagora... #opensource #CVE #bugbounty #security #vulnerability
230
(CVE-2023-2674): Improper Access Control in openemr/openemr. huntr.dev/bounties/af73e913-… Disclosed by @__nhienit__, fixed by openemr maintainers... #opensource #CVE #bugbounty #security #vulnerability
1
1
281
(CVE-2023-2666): Allocation of Resources Without Limits or Throttling in froxlor/froxlor. huntr.dev/bounties/0bbdc9d4-… Disclosed by huntr.dev/users/earth2sky, fixed by froxlor maintainers... #opensource #CVE #bugbounty #security #vulnerability
1
181
(CVE-2023-2665): Storage of Sensitive Data in a Mechanism without Access Control in francoisjacquet/rosariosis. huntr.dev/bounties/42f38a84-… Disclosed by huntr.dev/users/b1tch3s, fixed by francoisjacquet maintainers... #opensource #CVE #bugbounty #security #vulnerability
1
153
(CVE-2023-2630): Cross-site Scripting (XSS) - Stored in pimcore/pimcore. huntr.dev/bounties/e1001870-… Disclosed by @70rpedo, fixed by pimcore maintainers... #opensource #CVE #bugbounty #security #vulnerability
1
1
225
(CVE-2023-2629): Improper Neutralization of Formula Elements in a CSV File in pimcore/customer-data-framework. huntr.dev/bounties/821ff465-… Disclosed by @sampritdas8, fixed by pimcore maintainers... #opensource #CVE #bugbounty #security #vulnerability
1
1
152
(CVE-2023-2616): Cross-site Scripting (XSS) - Generic in pimcore/pimcore. huntr.dev/bounties/564cb512-… Disclosed by @sampritdas8, fixed by pimcore maintainers... #opensource #CVE #bugbounty #security #vulnerability
1
1
127
(CVE-2023-2615): Cross-site Scripting (XSS) - Reflected in pimcore/pimcore. huntr.dev/bounties/af9c360a-… Disclosed by @sampritdas8, fixed by pimcore maintainers... #opensource #CVE #bugbounty #security #vulnerability
1
2
130
(CVE-2023-2614): Cross-site Scripting (XSS) - DOM in pimcore/pimcore. huntr.dev/bounties/1a5e6c65-… Disclosed by @sampritdas8, fixed by pimcore maintainers... #opensource #CVE #bugbounty #security #vulnerability
1
1
122
(CVE-2023-2610): Integer Overflow or Wraparound in vim/vim. huntr.dev/bounties/31e67340-… Disclosed by huntr.dev/users/thkim0, fixed by vim maintainers... #opensource #CVE #bugbounty #security #vulnerability
73
(CVE-2023-2609): NULL Pointer Dereference in vim/vim. huntr.dev/bounties/1679be5a-… Disclosed by huntr.dev/users/thkim0, fixed by vim maintainers... #opensource #CVE #bugbounty #security #vulnerability
94
(CVE-2023-2591): Code Injection in nilsteampassnet/teampass. huntr.dev/bounties/705f79f4-… Disclosed by @MnQAZI, fixed by @TheTeamPass... #opensource #CVE #bugbounty #security #vulnerability

1
1
1
207
(CVE-2023-2590): Missing Authorization in answerdev/answer. huntr.dev/bounties/a4238a30-… Disclosed by huntr.dev/users/baobaovt, fixed by @answerdev... #opensource #CVE #bugbounty #security #vulnerability
144
(CVE-2023-2583): Code Injection in jsreport/jsreport. huntr.dev/bounties/397ea68d-… Disclosed by huntr.dev/users/m1dsummer, fixed by jsreport maintainers... #opensource #CVE #bugbounty #security #vulnerability
101
(CVE-2023-2566): Cross-site Scripting (XSS) - Stored in openemr/openemr. huntr.dev/bounties/47d6fc2a-… Disclosed by huntr.dev/users/christynorl, fixed by openemr maintainers... #opensource #CVE #bugbounty #security #vulnerability
152
(CVE-2023-2564): OS Command Injection in sbs20/scanservjs. huntr.dev/bounties/d13113ad-… Disclosed by huntr.dev/users/cruatta, fixed by sbs20 maintainers... #opensource #CVE #bugbounty #security #vulnerability
1
96
(CVE-2023-2554): External Control of File Name or Path in unilogies/bumsys. huntr.dev/bounties/396785a0-… Disclosed by huntr.dev/users/jomc98, fixed by unilogies maintainers... #opensource #CVE #bugbounty #security #vulnerability
77
(CVE-2023-2553): Cross-site Scripting (XSS) - Stored in unilogies/bumsys. huntr.dev/bounties/4e1f5b56-… Disclosed by huntr.dev/users/tht1997, fixed by unilogies maintainers... #opensource #CVE #bugbounty #security #vulnerability
67
(CVE-2023-2552): Cross-Site Request Forgery (CSRF) in unilogies/bumsys. huntr.dev/bounties/ab0b4655-… Disclosed by huntr.dev/users/tsarsecurity, fixed by unilogies maintainers... #opensource #CVE #bugbounty #security #vulnerability
60
Load more