Workflow

Beaker

Latest version: v1.13.0

Vulnerabilities (8)

CVE/PVE Vulnerability ID Advisory Affected versions Severity Severity Score
CVE-2015-3160 70480

XML external entity (XXE) vulnerability in bkr/server/jobs.py in Beak…
  • <20.1
 MEDIUM 4.3
CVE-2015-3161 70479

The search bar code in bkr/server/widgets.py in Beaker before 20.1 do…
  • <20.1
 MEDIUM 4.8
CVE-2015-3162 70478

Cross-site scripting (XSS) vulnerability in the edit comment dialog i…
  • <20.1
 MEDIUM 5.4
CVE-2015-3163 70477

The admin pages for power types and key types in Beaker before 20.1 d…
  • <20.1
 MEDIUM 4.3
CVE-2012-3458 25636

Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AE…
  • <1.6.4
 MEDIUM 4.3
CVE-2013-7489 38464

The Beaker library through 1.11.0 for Python is affected by deseriali…
  • <=1.11.0
 MEDIUM 6.8
PVE-2021-25635 25635

Beaker 0.9.4 removes directory escaping characters properly from the …
  • <0.9.4
 HIDDEN X.Y
CVE-2020-12079 70760

Beaker before 0.8.9 allows a sandbox escape, enabling system access a…
  • <0.8.9
 CRITICAL 10.0