spatie/browsershot Security Advisories for 3.8.1 (4)
-
[HIGH] Browsershot does not validate URL protocols passed to Browsershot URL method
PKSA-5g36-f9tk-skrf CVE-2022-41706 GHSA-8c2c-jxwj-jqgf
Affected version: <3.57.3
Reported by:
GitHub -
[MEDIUM] Browsershot vulnerable to Cross-Site Scripting (XSS)
PKSA-d7vr-vsdt-jbdy CVE-2022-43983 GHSA-82h9-v8vh-mfpq
Affected version: <3.57.3
Reported by:
GitHub -
[MEDIUM] Browsershot version 3.57.3 vulnerable to improper input validation
PKSA-bbg8-8937-v2dz CVE-2022-43984 GHSA-6q49-35h6-rq2p
Affected version: <3.57.4
Reported by:
GitHub -
[MEDIUM] browsershot local file inclusion vulnerability
PKSA-knj7-j31t-63hn CVE-2020-7790 GHSA-rv74-mh27-4jpv
Affected version: <3.40.1
Reported by:
GitHub