Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

Wagtail

We build Wagtail, an open source content management system built on Python and Django.
Collective - Host: opensource - https://opencollective.com/wagtail - Website: https://wagtail.org/ - Code: https://github.com/wagtail/wagtail

Moderate
wagtail: GSA_kwCzR0hTQS1qbXAzLTM5dnAtZndnOM4AA9zm
Wagtail regular expression denial-of-service via search query parsing
Ecosystems: pypi
Packages: wagtail
Source: github
Published: 3 months ago
Moderate
wagtail: GSA_kwCzR0hTQS14eGZtLXZtY2YtZzMzZs4AA8mP
Improper Handling of Insufficient Permissions in `wagtail.contrib.settings`
Ecosystems: pypi
Packages: wagtail
Source: github
Published: 5 months ago
Low
wagtail: GSA_kwCzR0hTQS13MnY4LXBocDQtcDhoY84AA7eE
Wagtail has permission check bypass when editing a model with per-field restrictions through `wagtail.contrib.settings` or `ModelViewSet`
Ecosystems: pypi
Packages: wagtail
Source: github
Published: 6 months ago
Low
wagtail: GSA_kwCzR0hTQS1mYzc1LTU4cjgtcm0zaM4AA2kA
Wagtail vulnerable to disclosure of user names via admin bulk action views
Ecosystems: pypi
Packages: wagtail
Source: github
Published: 12 months ago
Moderate
wagtail: GSA_kwCzR0hTQS0zM3B2LXZjZ2gtamZnOc4AAyg6
Wagtail vulnerable to denial-of-service via memory exhaustion when uploading large files
Ecosystems: pypi
Packages: wagtail
Source: github
Published: over 1 year ago
Moderate
wagtail: GSA_kwCzR0hTQS01Mjg2LWYycmYtMzVjMs4AAygz
Wagtail vulnerable to stored Cross-site Scripting attack via ModelAdmin views
Ecosystems: pypi
Packages: wagtail
Source: github
Published: over 1 year ago
Low
wagtail: GSA_kwCzR0hTQS14cXhtLTJycG0tMzg4Oc0kJQ
Comment reply notifications sent to incorrect users
Ecosystems: pypi
Packages: wagtail
Source: github
Published: over 2 years ago
Moderate
wagtail: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhmcnctaHhyNS1naHFm
Cross-site Scripting in wagtail
Ecosystems: pypi
Packages: wagtail
Source: github
Published: over 3 years ago
Moderate
wagtail: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdxNWgtZjlwNS1xN2Z4
Improper validation of URLs ('Cross-site Scripting') in Wagtail rich text fields
Ecosystems: pypi
Packages: wagtail
Source: github
Published: over 3 years ago
Moderate
wagtail: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI0NzMtOWhncS1qN3h3
Cross-Site Scripting in Wagtail
Ecosystems: pypi
Packages: wagtail
Source: github
Published: about 4 years ago
Moderate
wagtail: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpqanItM2pjdy1mOHY2
Potential Observable Timing Discrepancy in Wagtail
Ecosystems: pypi
Packages: wagtail
Source: github
Published: over 4 years ago
Moderate
wagtail: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXYyd2MtcGZxMi01Y202
Possible XSS attack in Wagtail
Ecosystems: pypi
Packages: wagtail
Source: github
Published: over 4 years ago