GHSA-gmx7-gr5q-85w5: magic-crypt uses insecure cryptographic algorithms

GHSA-gv7f-5qqh-vxfx: xous has unsound usages of `core::slice::from_raw_parts` 

GHSA-ggwq-xc72-33r3: LGSL has a reflected XSS at /lgsl_files/lgsl_list.php

GHSA-8jhw-6pjj-8723: Better Auth has an Open Redirect Vulnerability in Verify Email Endpoint

GHSA-4fwj-m62q-pp47: Password Pusher Allows Session Token Interception Leading to Potential Hijacking

Insufficient web service capability checks made it possible to move categories a user had permission to manage, to a parent category they did not have the capability to manage.

**Moodle Improper Access Control vulnerability**

Low severity GitHub Reviewed Published Nov 9, 2023 to the GitHub Advisory Database • Updated Nov 10, 2023

Headline

GHSA-fm5h-58g2-4m3f: Moodle Improper Access Control vulnerability

Related news

ghsa: Latest News