GHSA-56r6-ccm5-8hg3: Alchemy Non-SMA and Webauthn Account Security Advisory

GHSA-xj5p-8h7g-76m7: @translated/lara-mcp vulnerable to command injection in import_tmx tool

GHSA-2gxp-6r36-m97r: Cadwyn vulnerable to XSS on the docs page

GHSA-cj6r-rrr9-fg82: Nuxt MDC has an XSS vulnerability in markdown rendering that bypasses HTML filtering

GHSA-xffm-g5w8-qvg7: @eslint/plugin-kit is vulnerable to Regular Expression Denial of Service attacks through ConfigCommentParser

Due to incorrect access control in Plone version v6.0.9, remote attackers can view and list all files hosted on the website via sending a crafted request.

**Phone information disclosure vulnerability**

Moderate severity GitHub Reviewed Published Mar 6, 2024 to the GitHub Advisory Database • Updated Mar 6, 2024

Headline

GHSA-xg5p-8wg5-rhxm: Phone information disclosure vulnerability

ghsa: Latest News