GHSA-gmx7-gr5q-85w5: magic-crypt uses insecure cryptographic algorithms

GHSA-gv7f-5qqh-vxfx: xous has unsound usages of `core::slice::from_raw_parts` 

GHSA-ggwq-xc72-33r3: LGSL has a reflected XSS at /lgsl_files/lgsl_list.php

GHSA-8jhw-6pjj-8723: Better Auth has an Open Redirect Vulnerability in Verify Email Endpoint

GHSA-4fwj-m62q-pp47: Password Pusher Allows Session Token Interception Leading to Potential Hijacking

Stronger revision number limitations were required on file serving endpoints to improve cache poisoning protection.

**Moodle Acceptance of Extraneous Untrusted Data With Trusted Data vulnerability**

Low severity GitHub Reviewed Published Nov 9, 2023 to the GitHub Advisory Database • Updated Nov 10, 2023

Headline

GHSA-cwh2-q44x-5w3c: Moodle Acceptance of Extraneous Untrusted Data With Trusted Data vulnerability

Related news

ghsa: Latest News