Hendrik Garske
|
8317eed72a
|
v0.1.36 — feature: chain-check, unique visitors, referer analytics, QR-code, CSV-import UI, catch-all URL
Release Build / build (push) Waiting to run
|
2026-05-21 15:21:06 +02:00 |
|
Hendrik Garske
|
28ff3d6fae
|
v0.1.35 — security: ws@8.20.1 via override (uninitialized memory disclosure)
|
2026-05-21 15:11:04 +02:00 |
|
Hendrik
|
9da40724b4
|
Upgrade next to 15.5.18 to fix middleware bypass CVEs
Fixes CVE-2026-44574 (CVSS 8.1), CVE-2026-44575 (CVSS 7.5),
CVE-2026-45109 (CVSS 7.5): attackers could bypass middleware auth
in App Router applications via dynamic route parameter injection
and segment-prefetch routes.
Also fixes CVE-2026-44579 (DoS, CVSS 7.5) and
CVE-2026-44576 (cache poisoning, CVSS 5.4).
|
2026-05-15 16:51:04 +02:00 |
|
Hendrik
|
25644e0ea2
|
v0.1.28 — security: nodemailer 8.0.7 (SMTP CRLF injection fixes), uuid 11.1.1 override durchsetzen
|
2026-05-01 23:41:30 +02:00 |
|
Hendrik
|
c60a38091b
|
v0.1.26 — SMTP + Passwort-vergessen, Username-Login, SHA256-Verifikation der Update-Tarballs
|
2026-05-01 22:06:55 +02:00 |
|
Hendrik
|
4bd76c9eda
|
v0.1.14 — direct PDF download via puppeteer + chromium, fix logo on cover
|
2026-05-01 19:34:08 +02:00 |
|
Hendrik
|
96c541f8f6
|
v0.1.8 — security: bump next 15.5.15, postcss override, uuid 11 override
|
2026-05-01 19:00:17 +02:00 |
|
Hendrik
|
d7272c5e58
|
Initial NexRedirect: redirect server with admin UI, analytics, API tokens, self-update
|
2026-05-01 17:51:12 +02:00 |
|