FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-10-23 17:04:23 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
4553e4b3-addf-11f0-9b8d-40a6b7c3b3b8	Hidden/Protected custom variables are prone to filter enumeration Icinga reports: An authorized user with access to Icinga DB Web, can use a custom variable in a filter that is either protected by icingadb/protect/variables or hidden by icingadb/denylist/variables, to guess values assigned to it. Discovery 2025-10-16 Entry 2025-10-20 icingaweb2-module-icingadb-php81 < 1.1.4 >= 1.2 lt 1.2.3,1 icingaweb2-module-icingadb-php82 < 1.1.4 >= 1.2 lt 1.2.3,1 icingaweb2-module-icingadb-php83 < 1.1.4 >= 1.2 lt 1.2.3,1 icingaweb2-module-icingadb-php84 < 1.1.4 >= 1.2 lt 1.2.3,1 icingaweb2-module-icingadb-php85 < 1.1.4 >= 1.2 lt 1.2.3,1 CVE-2025-61789 https://github.com/Icinga/icingadb-web/security/advisories/GHSA-w57j-28jc-8429

VuXML ID

Description

4553e4b3-addf-11f0-9b8d-40a6b7c3b3b8

Hidden/Protected custom variables are prone to filter enumeration

Icinga reports:

An authorized user with access to Icinga DB Web, can use a custom variable in a filter that is either protected by icingadb/protect/variables or hidden by icingadb/denylist/variables, to guess values assigned to it.

Discovery 2025-10-16
Entry 2025-10-20
icingaweb2-module-icingadb-php81

< 1.1.4

>= 1.2 lt 1.2.3,1

icingaweb2-module-icingadb-php82

< 1.1.4

>= 1.2 lt 1.2.3,1

icingaweb2-module-icingadb-php83

< 1.1.4

>= 1.2 lt 1.2.3,1

icingaweb2-module-icingadb-php84

< 1.1.4

>= 1.2 lt 1.2.3,1

icingaweb2-module-icingadb-php85

< 1.1.4

>= 1.2 lt 1.2.3,1

CVE-2025-61789
https://github.com/Icinga/icingadb-web/security/advisories/GHSA-w57j-28jc-8429