GHSA-3m86-c9x3-vwm9: Graylog vulnerable to privilege escalation through API tokens

GHSA-3q26-f695-pp76: @cyanheads/git-mcp-server vulnerable to command injection in several tools

phpxmlrpc vulnerable to argument injection via  local file access in `Client:send` via manipulation of `$protocol` argument.

**phpxmlrpc vulnerable to argument injection**

Moderate severity GitHub Reviewed Published Dec 2, 2022 • Updated Dec 2, 2022