wallabag/wallabag Security Advisories for 2.6.6 (2)
-
[MEDIUM] wallabag/wallabag Has Multiple Cross-Site Request Forgery (CSRF) Vulnerabilities
PKSA-47nk-mbyf-3k8g GHSA-5pm7-cp8f-p2c2
Affected version: <2.6.11
Reported by:
GitHub -
[MEDIUM] Wallabag user can disable 2FA unintentionally
PKSA-rpn3-c2zq-8bxc GHSA-56fm-hfp3-x3w3
Affected version: >=2.0.0-alpha.1,<2.6.7
Reported by:
GitHub