FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-23 05:42:14 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
15dae5cc-9ee6-4577-a93e-2ab57780e707	py39-sentry-sdk -- sensitive cookies leak Tom Wolters reports: When using the Django integration of the Sentry SDK in a specific configuration it is possible to leak sensitive cookies values, including the session cookie to Sentry. These sensitive cookies could then be used by someone with access to your Sentry issues to impersonate or escalate their privileges within your application. Discovery 2023-03-21 Entry 2023-04-09 py39-sentry-sdk < 1.14.0 CVE-2023-28117 https://osv.dev/vulnerability/GHSA-29pr-6jr8-q5jm

VuXML ID

Description

15dae5cc-9ee6-4577-a93e-2ab57780e707

py39-sentry-sdk -- sensitive cookies leak

Tom Wolters reports:

When using the Django integration of the Sentry SDK in a specific configuration it is possible to leak sensitive cookies values, including the session cookie to Sentry.

These sensitive cookies could then be used by someone with access to your Sentry issues to impersonate or escalate their privileges within your application.

Discovery 2023-03-21
Entry 2023-04-09
py39-sentry-sdk

< 1.14.0

CVE-2023-28117
https://osv.dev/vulnerability/GHSA-29pr-6jr8-q5jm