Dismissed
by @LeSuisse Activity log
- Created automatic suggestion
-
@LeSuisse
removed
5 packages
- ocrmypdf
- python312Packages.ocrmypdf
- python313Packages.ocrmypdf
- python314Packages.ocrmypdf
- wordpressPackages.plugins.civicrm
- @LeSuisse dismissed
ChurchCRM has Stored Cross-Site Scripting (XSS) in GroupEditor.php
ChurchCRM is an open-source church management system. In versions prior to 6.8.2, it was possible for an authenticated user with permission to edit groups to store a JavaScript payload that would execute when the group was viewed in the Group View. Version 6.8.2 fixes this issue.
References
- https://github.com/ChurchCRM/CRM/security/advisories/GHSA-3wp4-vpr7-47q6 x_refsource_CONFIRM
Affected products
CRM
- ==< 6.8.1
Ignored packages (5)
pkgs.ocrmypdf
Adds an OCR text layer to scanned PDF files, allowing them to be searched
pkgs.python312Packages.ocrmypdf
Adds an OCR text layer to scanned PDF files, allowing them to be searched
pkgs.python313Packages.ocrmypdf
Adds an OCR text layer to scanned PDF files, allowing them to be searched
pkgs.python314Packages.ocrmypdf
Adds an OCR text layer to scanned PDF files, allowing them to be searched