GHSA-mm6v-68qp-f9fw: Crayfish allows Remote Code Execution via Homarus Authorization header

GHSA-c873-wfhp-wx5m:  SP1 has missing verifier checks and fiat-shamir observations

GHSA-7pq6-v88g-wf3w: Sentry's improper authentication on SAML SSO process allows user impersonation

GHSA-2c6g-pfx3-w7h8: Insecure Temporary File in RESTEasy

GHSA-5m7j-6gc4-ff5g: Mattermost fails to properly validate post props

In Moodle, ID numbers displayed in the web service token list required additional sanitizing to prevent a stored XSS risk.

**Moodle Cross-site Scripting vulnerability**

Moderate severity GitHub Reviewed Published Mar 7, 2023 to the GitHub Advisory Database • Updated Mar 8, 2023

Headline

GHSA-786g-xv8v-9h93: Moodle Cross-site Scripting vulnerability

Related news

ghsa: Latest News