GHSA-6qhv-4h7r-2g9m: rfc3161-client has insufficient verification for timestamp response signatures

GHSA-g3qg-6746-3mg9: zkVM Underconstrained Vulnerability

GHSA-93c7-7xqw-w357: Pingora has a Request Smuggling Vulnerability

GHSA-vrw8-fxc6-2r93: chi Allows Host Header Injection which Leads to Open Redirect in RedirectSlashes

GHSA-4578-6gjh-f2jm: Mattermost allows an unauthorized Guest user access to Playbook

microweber/microweber prior to 1.3.3 is vulnerable to cross-site scripting (XSS) in the template selection while changing a group template.

**Microweber vulnerable to cross-site scripting (XSS)**

Moderate severity GitHub Reviewed Published Apr 13, 2023 to the GitHub Advisory Database • Updated Apr 14, 2023

Headline

GHSA-f4g6-c47x-qhww: Microweber vulnerable to cross-site scripting (XSS)

Related news

ghsa: Latest News