GHSA-2hjh-495w-hmxc: Sylius allows unrestricted brute-force attacks on user accounts

GHSA-j82m-pc2v-2484: Parsed HTML anchor links in Markdown provided to parseMarkdown can result in XSS in @nuxtjs/mdc

GHSA-vrpv-vw92-328g: Multiple rtmpdump vulnerabilities

GHSA-wg33-5h85-7q5p: Mitmweb API Authentication Bypass Using Proxy Server

GHSA-56jp-w6vw-j3jw: Apache James vulnerable to denial of service through the use of IMAP literals

The version of rtmpdump contained in this package has multiple known vulnerabilities.

### Patches
This package is abandoned and should not be used anymore.
There is no patched release.

### Workarounds
You should install rmtpdump from another source.

### References
* https://github.com/advisories/GHSA-fm48-q5qq-894j
* https://github.com/advisories/GHSA-pfv7-grcx-8gcc
* https://github.com/advisories/GHSA-hg4c-2mw4-gwpm

**Multiple rtmpdump vulnerabilities**

Critical severity GitHub Reviewed Published Feb 5, 2025 in Rudloff/rtmpdump-bin • Updated Feb 6, 2025

Headline

GHSA-vrpv-vw92-328g: Multiple rtmpdump vulnerabilities

Patches

Workarounds

References

ghsa: Latest News