devguard-web

login-torus

fix/gitlab-pipeline

login-screen

636-add-cyclonedx-logo-to-the-options

fix-settings-crash-when-refreshing

Setup-Flow---Done-Button-does-not-close-modal

prism-login

add-InputWithButton-component

feature/sast

add-secrets-option-to-asset

0.12.1 708---if-you-create-a-token-then-the-done-button-just-vanishes-which-creates-a-dead-end

update-badge-api

fix-no-name-badge-crash

656-improve-action-in-risk-handling

feature/sbom-report

599-zoom-image-when-clicking-on-it

improvement/webhook-modal

843-rename-code-risk-handling-to-code-risks-and-dependency-risk-handling-to-dependency-risks

567-Display-the-password-policy-on-the-registration-page

fix/capitalization-opencode-sign-in-button

813-exporting-sboms-does-not-work

834-rename-project-to-group-and-rename-subproject-to-subgroups

fix/risks-search

639-deleting-a-project-results-in-404

Add-to-the-instructions-for-GitLab-that-you-have-to-be-a-maintainer-to-configure-variables

0.11.1 594-reveal-button-is-bugged-if-the-user-is-using-pwned-password-2

634--button-to-delete-an-organization

fix/org-creation-error

onboarding

598-concept-for-registration-workflow

fix-severity-grades-dashboard-filter

add/webhook-management-section

feature/genrate-pdfs

fix/ticket-url

fix-member-inivation-message

455-in-app-footer-should-be-displayed-always-on-bottom-of-screen

chore/improve-onboarding-steps

638-appbar-make-text-white

repository-search-is-not-working-anymore

847-setup-flow-done-button-does-not-close-modal-states-pipeline-failed-even-if-i-did-not-integrated-anything

async-button

777-error-message-that-an-account-with-the-e-mail-address-already-exists2

577-add-fingerprint-icon-to-visualise-difference-in-Sign-in-With-Passkey

838-add-basic-risk-handling-information-sharing-inside-org

660-license-combobox-overwrite

634-button-to-delete-an-organization

847-setup-flow-done-button-does-not-close-modal

improve-organization-dropdown-component

777-error-message-that-an-account-with-the-e-mail-address-already-exists

license-combobox-overwrite

649-onboarding-workflow-fix-slider-animation

0.11.0 485-onboarding-done-button-doesnt-do-anything

700-search-looses-focus-after-typing-the-first-character

compliance-risks

fix-active-org-error

578-sbom-upload-button-is-finder-if-not-nothing-is-selected-yet

add/search-function-to-projectslist

add/jira-integration-option-to-settings

fix/false-positve-first-party-vulns

492-add-make-visible-button-to-password-inputs

update-deps

add-jira-icon-in-repo-select

fix-wrong-github-actions-secret-scanning-yaml

improved-onboarding

feautre/jira-integration

467-only-display-licenses-with-more-that-0%-of-the-packages

update-scanner-badge

add-mechanical-justification

fix/EntityProviderLinkBanner

845-change-toast-position-to-top-screen-middle-shadcn-sonner

545-Scanner-badge-should-not-break-lines-but-include-hoverable-tooltip-about-fullname

708-if-you-create-a-token-then-the-done-button-just-vanishes-which-creates-a-dead-end

fix/badgiApiUrl

fix/issue-810

update/integrations-connecting-section

chore/error-tracking

deleting-a-project-results-in-404

fix-org-slug

add-sca-and-container-scanning-to-integrationsnippet

pdf-download

fix-manual-sarif-upload

add-information-to-activity-stream

fix/reduce-error-track-infos

fix/markdown-rendering

chore/error-tracking-reduce

remove-org-badge-by-external-entity

update-description-for-enable-ticket-range

190-dependency-table-dialog-with-graph

0.12.3 594-reveal-button-is-bugged-if-the-user-is-using-pwned-password

rerender-badge-when-new-license-is-selected

fix/webhook-section

567-Display-the-password-policy-on-the-registration-page2

472-Wrong-color-for-checkmark-should-be-black-like-fixed-state

fix/loading-button-after-create-subproject

829-external-entity-providers-remove-org-badge-in-navigation

756-threejs-devguard-badge-is-blocking-onboarding-flow

main

Devguard-Pipeline

Badge API Documentation

Badge API

Badge API Programm ZenDiS

quay.io/jetstack/cert-manager-acmesolver

ghcr.io/l3montree-dev/devguard-operator

ghcr.io/l3montree-dev/devguard-postgresql

ghcr.io/l3montree-dev/devguard

docker.io/oryd/kratos

DevGuard Operator

Devguard Postgresql

devguard-scanner

devguard-documentation

 Devguard-Pipeline

devguard

devguard-action

Devguard

Robot User

Badge-API

Lars Hermges

Patrick Rissmann

Sebastian Kawelke

Tim Bastin

David Luhmer

Refaei Shikho

Frédéric Noppe

refoo0

timbastin

seb-kw

Frederic-Kenji

devguard-bot-dev[bot]

L3montree Cybersecurity

The scanner component of the devguard project

The documentation for the DevGuard Project

This is a scan for Devguard CI/CD components in a GitLab project, aimed at testing whether these components function correctly.

Manage your CVEs seamlessly, Integrate your Vulnerability Scanners, Documentation made easy, Compliance to security Frameworks - OWASP Incubating Project

Next.js is a React framework for building full-stack web applications. In Next.js App Router from 15.3.0 to before 15.3.3 and Vercel CLI from 41.4.1 to 42.2.0, a cache poisoning vulnerability was found. The issue allowed page requests for HTML content to return a React Server Component (RSC) payload instead under certain conditions. When deployed to Vercel, this would only impact the browser cache, and would not lead to the CDN being poisoned. When self-hosted and deployed externally, this could lead to cache poisoning if the CDN does not properly distinguish between RSC / HTML in the cache keys. This issue has been resolved in Next.js 15.3.3.

/Devguard
Group
/devguard-web
Repository

CVE-2025-49005

Reopen this vulnerability

Affected component

Quick Fix