Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

github.com/louislam/uptime-kuma

A fancy self-hosted monitoring tool
https://github.com/louislam/uptime-kuma

High

GSA_kwCzR0hTQS03Z3J4LWY5NDUtbWo5Ns4AA7cr

Uptime Kuma vulnerable to authenticated remote code execution via malicious plugin installation
Ecosystems: npm
Packages: uptime-kuma
Source: github
Published: 8 months ago

Moderate

GSA_kwCzR0hTQS12cjh4LTc0cG0tNnZqN84AA7cq

Uptime Kuma's authenticated path traversal via plugin repository name may lead to unavailability or data loss
Ecosystems: npm
Packages: uptime-kuma
Source: github
Published: 8 months ago

Low

GSA_kwCzR0hTQS0yM3EyLTVnZjgtZ2pwcM4AA7NN

Enabling Authentication does not close all logged in socket connections immediately
Ecosystems: npm
Packages: uptime-kuma
Source: github
Published: 8 months ago

Moderate

GSA_kwCzR0hTQS04OGo0LXBjeDgtcTRxM84AA3q_

Password Change Vulnerability
Ecosystems: npm
Packages: uptime-kuma
Source: github
Published: about 1 year ago

Moderate

GSA_kwCzR0hTQS1oZnhoLXJqdjctMjM2Oc4AA3Xr

Uptime Kuma Authenticated remote code execution via TailscalePing
Ecosystems: npm
Packages: uptime-kuma
Source: github
Published: about 1 year ago

Moderate

GSA_kwCzR0hTQS12NHYyLThoODgtNjVxas4AA3W6

Attribute Injection leading to XSS(Cross-Site-Scripting)
Ecosystems: npm
Packages: uptime-kuma
Source: github
Published: about 1 year ago

High

GSA_kwCzR0hTQS1nOXYyLXdxY2otajk5Z84AA2X4

Uptime Kuma has Persistentent User Sessions
Ecosystems: npm
Packages: uptime-kuma
Source: github
Published: about 1 year ago