You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi, I am not affiliated with this project.
Still, I would highly encourage everybody waiting for a fix, to actively participate in the process. ... Given the maintenance posture of this project and its past as nearly-abandonware.
You could pull-request a regression-test that showcases the vulnerability.
Of course, this test will fail, as long as no fix was provided, but at least we could see that the claim is true: a vulnerability actually exists (this is important, because none of the CVE were analyzed/reviewed/proven).
You could comment mitigation methods here.
You could pullrequest a fix.
just help improve the situation
If you (personally) cannot provide such, maybe the organizations you work for could pay somebody to help :-)
A few days ago two vulnerabilities were listed:
Two issues where raised here and here respectively.
The text was updated successfully, but these errors were encountered: