Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

Uptime Kuma

Making the project better. You can also support the project by giving a ⭐ on Github.
Collective - Host: opensource - https://opencollective.com/uptime-kuma - Website: https://uptime.kuma.pet/ - Code: https://github.com/louislam/uptime-kuma

High

uptime-kuma: GSA_kwCzR0hTQS03Z3J4LWY5NDUtbWo5Ns4AA7cr

Uptime Kuma vulnerable to authenticated remote code execution via malicious plugin installation
Ecosystems: npm
Packages: uptime-kuma
Source: github
Published: 6 months ago

Moderate

uptime-kuma: GSA_kwCzR0hTQS12cjh4LTc0cG0tNnZqN84AA7cq

Uptime Kuma's authenticated path traversal via plugin repository name may lead to unavailability or data loss
Ecosystems: npm
Packages: uptime-kuma
Source: github
Published: 6 months ago

Low

uptime-kuma: GSA_kwCzR0hTQS0yM3EyLTVnZjgtZ2pwcM4AA7NN

Enabling Authentication does not close all logged in socket connections immediately
Ecosystems: npm
Packages: uptime-kuma
Source: github
Published: 6 months ago

Moderate

uptime-kuma: GSA_kwCzR0hTQS04OGo0LXBjeDgtcTRxM84AA3q_

Password Change Vulnerability
Ecosystems: npm
Packages: uptime-kuma
Source: github
Published: 10 months ago

Moderate

uptime-kuma: GSA_kwCzR0hTQS1oZnhoLXJqdjctMjM2Oc4AA3Xr

Uptime Kuma Authenticated remote code execution via TailscalePing
Ecosystems: npm
Packages: uptime-kuma
Source: github
Published: 11 months ago

Moderate

uptime-kuma: GSA_kwCzR0hTQS12NHYyLThoODgtNjVxas4AA3W6

Attribute Injection leading to XSS(Cross-Site-Scripting)
Ecosystems: npm
Packages: uptime-kuma
Source: github
Published: 11 months ago

High

uptime-kuma: GSA_kwCzR0hTQS1nOXYyLXdxY2otajk5Z84AA2X4

Uptime Kuma has Persistentent User Sessions
Ecosystems: npm
Packages: uptime-kuma
Source: github
Published: about 1 year ago