GHSA-vh5j-5fhq-9xwg: Taylor has race condition in /get-patch that allows purchase token replay

GHSA-jfj7-249r-7j2m: TabberNeue vulnerable to Stored XSS through wikitext

GHSA-m435-9v6r-v5f6: MobSF vulnerability allows SSRF due to the allow_redirects=True parameter

GHSA-fv92-fjc5-jj9h: mapstructure May Leak Sensitive Information in Logs When Processing Malformed Data

GHSA-277f-37gw-9gmq: raspap-webgui has a Directory Traversal vulnerability

A cross-site request forgery (CSRF) vulnerability in Jenkins GitLab Branch Source Plugin 684.vea_fa_7c1e2fe3 and earlier allows attackers to connect to an attacker-specified URL.

**CSRF vulnerability in Jenkins GitLab Branch Source Plugin**

Moderate severity GitHub Reviewed Published Jan 24, 2024 to the GitHub Advisory Database • Updated Jan 24, 2024

Headline

GHSA-8r93-59cf-358f: CSRF vulnerability in Jenkins GitLab Branch Source Plugin

ghsa: Latest News