Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Cross-site Scripting (XSS) - Stored in Packagist bytefury/crater prior to 6.0.2.
Advisories for Composer/Bytefury/Crater package
2022
Missing Authorization
Improper Access Control in GitHub repository crater-invoice/crater prior to 6.0.2.
Unrestricted Upload of File with Dangerous Type
Unrestricted Upload of File with Dangerous Type in GitHub repository crater-invoice/crater
Unrestricted Upload of File with Dangerous Type
crater is vulnerable to Unrestricted Upload of File with Dangerous Type