GHSA-7m27-7ghc-44w9: Next.js Allows a Denial of Service (DoS) with Server Actions

GHSA-q9jv-mm3r-j47r: PhpSpreadsheet allows bypass XSS sanitizer using the javascript protocol and special characters

The OpenAPI loader in Embedchain before 0.1.57 allows attackers to execute arbitrary code, related to the openapi.py yaml.load function argument.

**Code execution in Embedchain**

High severity GitHub Reviewed Published Jan 21, 2024 to the GitHub Advisory Database • Updated Jan 22, 2024