Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Imgproxy
(Evilmartians)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-05-08 | CVE-2023-30019 | imgproxy <=3.14.0 is vulnerable to Server-Side Request Forgery (SSRF) due to a lack of sanitization of the imageURL parameter. | Imgproxy | 5.3 | ||
| 2023-03-19 | CVE-2023-1496 | Cross-site Scripting (XSS) - Reflected in GitHub repository imgproxy/imgproxy prior to 3.14.0. | Imgproxy | 5.4 |