GHSA-6gf2-ffq8-gcww: GHSL-2024-288: SickChill open redirect in login

GHSA-j3f9-p6hm-5w6q: Carbon has an arbitrary file include via unvalidated input passed to Carbon::setLocale

GHSA-cjgq-5qmw-rcj6: keras Path Traversal vulnerability

GHSA-j4jw-m6xr-fv6c: Soft Serve vulnerable to path traversal attacks

GHSA-mjf9-4pcv-vfg7: Apache OpenMeetings vulnerable to Deserialization of Untrusted Data 

All versions of the package progressbar.js are vulnerable to Prototype Pollution via the function extend() in the file utils.js.



**progressbar.js vulnerable to Prototype Pollution**

High severity GitHub Reviewed Published Jun 12, 2023 to the GitHub Advisory Database • Updated Jun 12, 2023

Headline

GHSA-89qm-hm2x-mxm3: progressbar.js vulnerable to Prototype Pollution

Related news

ghsa: Latest News