GHSA-4jwc-w2hc-78qv: Tonic has remotely exploitable denial of service vulnerability

GHSA-x8gm-j36p-fppf: LibreNMS vulnerable to Stored Cross-site Scripting via File Upload

GHSA-fhqq-8f65-5xfc: Improper Input Validation in Buildah and Podman

GHSA-3h3x-2hwv-hr52: Golang FIPS OpenSSL has a Use of Uninitialized Variable vulnerability

GHSA-mc76-5925-c5p6: Link Following in github.com/containers/common

thorsten/phpmyfaq prior to 3.1.12 is vulnerable to improper access control when FAQ News is marked as inactive in settings and have comments enabled, allowing comments to be posted on inactive FAQs. This has been fixed in 3.1.12.

**thorsten/phpmyfaq vulnerable to improper access control**

Moderate severity GitHub Reviewed Published Apr 5, 2023 to the GitHub Advisory Database • Updated Apr 6, 2023

Headline

GHSA-2wjp-w7g7-h63q: thorsten/phpmyfaq vulnerable to improper access control

Related news

ghsa: Latest News