GHSA-vhvx-8xgc-99wf: DSpace is vulnerable to Path Traversal attacks when importing packages using Simple Archive Format

GHSA-jjwr-5cfh-7xwh: DSpace is vulnerable to XML External Entity injection during archive imports 

GHSA-6jx8-rcjx-vmwf: GitHub Kanban MCP Server vulnerable to Command Injection

GHSA-8w3f-4r8f-pf53: pyLoad vulnerable to XSS through insecure CAPTCHA 

GHSA-7cvf-pxgp-42fc: Directus' insufficient permission checks can enable unauthenticated users to manually trigger Flows

`BinaryArray` performs insufficient validation on creation, which allows out-of-bounds reads in safe code.


**\`BinaryArray\` does not perform bound checks on reading values and offsets**

High severity GitHub Reviewed Published Jun 16, 2022 • Updated Jun 16, 2022

Headline

GHSA-r7cj-wmwv-hfw5: `BinaryArray` does not perform bound checks on reading values and offsets

ghsa: Latest News