GHSA-m9hc-vxjj-4x6q: PGHoard Path Traversal vulnerability

GHSA-4hxr-28mv-q729: Liferay Portal and Liferay DXP vulnerable to Criss-site Scripting

GHSA-5mpw-4546-2wcr: Elasticsearch Incorrect Authorization vulnerability

GHSA-5j33-cvvr-w245: Apache Tomcat Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability

GHSA-653p-vg55-5652: Apache Tomcat Uncontrolled Resource Consumption vulnerability

The git-url-parse crate through 0.4.4 for Rust allows Regular Expression Denial of Service (ReDos) via a crafted URL to `normalize_url` in `lib.rs`, a similar issue to CVE-2023-32758 (Python).

**git-url-parse crate vulnerable to Regular Expression Denial of Service**

Low severity GitHub Reviewed Published Jun 12, 2023 to the GitHub Advisory Database • Updated Jun 12, 2023

Headline

GHSA-qfh9-8p57-mjjj: git-url-parse crate vulnerable to Regular Expression Denial of Service

Related news

ghsa: Latest News