GHSA-j4rj-fgcq-wmqp: Cockpit - Content Platform vulnerable to XSS through name or email argument names

GHSA-p85q-mww9-gwqf: Citizen Short Description stored XSS vulnerability through wikitext

GHSA-prmv-7r8c-794g: Citizen vulnerable to Stored XSS through short descriptions

GHSA-67rr-84xm-4c7r: Next.JS vulnerability can lead to DoS via cache poisoning 

GHSA-r2fc-ccr8-96c4: Next.js has a Cache poisoning vulnerability due to omission of the Vary header

## Duplicate advisory
This advisory has been withdrawn because it is a duplicate of [GHSA-mrqx-mjc4-vfh3](https://github.com/advisories/GHSA-mrqx-mjc4-vfh3). This link is maintained to preserve external references.

## Original Description

Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.3.

**Withdrawn: wallabag subject to Improper Authorization via annotations**

Moderate severity GitHub Reviewed Published Feb 1, 2023 to the GitHub Advisory Database • Updated Feb 2, 2023

Headline

GHSA-xrw3-wqph-3fxg: Withdrawn: wallabag subject to Improper Authorization via annotations

Duplicate advisory

Original Description

ghsa: Latest News