GHSA-w69q-w4h4-2fx8: Reverb use after free vulnerability

GHSA-4xx7-2cx3-x473: Keycloak SAML signature validation flaw

GHSA-vvf8-2h68-9475: Keycloak Open Redirect vulnerability

GHSA-84jw-g43v-8gjm: DOM Clobbering Gadget found in Rspack's AutoPublicPathRuntimeModule that leads to XSS

GHSA-jj94-6f5c-65r8: ZITADEL Allows Unauthorized Access After Organization or Project Deactivation

An issue was discovered in Croc through 9.6.5. The shared secret, located on a command line, can be read by local users who list all processes and their arguments.

**Croc may expose secret to local users**

Moderate severity GitHub Reviewed Published Sep 20, 2023 to the GitHub Advisory Database • Updated Sep 21, 2023

Headline

GHSA-7g3v-4ggr-xvjf: Croc may expose secret to local users

Related news

ghsa: Latest News