FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

forgejo -- multiple vulnerabilities

Affected packages
		forgejo	<	8.0.3
		forgejo7	<	7.0.9

Details

VuXML ID	a5e13973-6c75-11ef-858b-23eeba13701a
Discovery	2024-09-03
Entry	2024-09-06

Problem Description:

Replace v-html with v-text in search inputbox
Upgrade webpack to v5.94.0 as a precaution to mitigate CVE-2024-43788, although we were not yet able to confirm that this can be exploited in Forgejo.

References

CVE Name	CVE-2024-43788
URL	https://codeberg.org/forgejo/forgejo/milestone/8231

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.