GHSA-x7m9-mv49-fv73: Vaultwarden vulnerable to user impersonation

GHSA-vprm-27pv-jp3w: Vaultwarden authenticated reflected cross-site scripting (XSS) vulnerability

iden3 snarkjs through 0.6.11 allows double spending because there is no validation that the publicSignals length is less than the field modulus.

**Double spend in snarkjs**

Moderate severity GitHub Reviewed Published May 22, 2023 to the GitHub Advisory Database • Updated May 22, 2023