GHSA-632q-77qj-c89q: LimeSurvey Cross Site Scripting vulnerability

GHSA-74q2-6jp4-3rqq: Krayin CRM vulnerable to Cross Site Scripting (XSS) via the organization name

GHSA-c7xm-rwqj-pgcj: LimeSurvey Cross Site Scripting vulnerability

GHSA-6hwr-6v2f-3m88: XXE in PHPSpreadsheet's XLSX reader

GHSA-r8w8-74ww-j4wh: PhpSpreadsheet HTML writer is vulnerable to Cross-Site Scripting via JavaScript hyperlinks

### Workarounds
* forbid request genesis through network request
* forbid requesting duplicate data  through network request



**Nervos CKB vulnerable to low-resource flood DDoS attacks through network message**

Low severity GitHub Reviewed Published Feb 8, 2023 in nervosnetwork/ckb • Updated Feb 8, 2023

Headline

GHSA-p2gm-ffr3-w2xw: Nervos CKB vulnerable to low-resource flood DDoS attacks through network message

Workarounds

ghsa: Latest News