GHSA-w7qr-q9fh-fj35: Dozzle uses unsafe hash for passwords

GHSA-mq92-jr35-ffpc: open-webui allows enumeration of file names and traversal of directories by observing the error messages

An issue in MLFlow versions 2.8.1 and before allows a remote attacker to obtain sensitive information via a crafted request to REST API.

**Information exposure in MLflow**

High severity GitHub Reviewed Published Dec 5, 2023 to the GitHub Advisory Database • Updated Dec 11, 2023