Swift package
github.com/swift-server/swift-prometheus
pkg:swift/github.com/swift-server/swift-prometheus
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-28867 | — | >= 2.0.0-alpha.1, < 2.0.0-alpha.2 | 2.0.0-alpha.2 | Mar 29, 2024 | Swift Prometheus is a Swift client for the Prometheus monitoring system, supporting counters, gauges and histograms. In code which applies _un-sanitized string values into metric names or labels_, an attacker could make use of this and send a `?lang` query parameter containing ne |
- CVE-2024-28867Mar 29, 2024affected >= 2.0.0-alpha.1, < 2.0.0-alpha.2fixed 2.0.0-alpha.2
Swift Prometheus is a Swift client for the Prometheus monitoring system, supporting counters, gauges and histograms. In code which applies _un-sanitized string values into metric names or labels_, an attacker could make use of this and send a `?lang` query parameter containing ne