GHSA-g59r-24g3-h7cm: Statamic Vulnerable to Superadmin Account Takeover via Stored Cross-Site Scripting and Lack of Proper X-CSRF-TOKEN Server-Side Validation

GHSA-29xp-372q-xqph: node-tar has a race condition leading to uninitialized memory exposure

GHSA-fj2x-735w-74vq: gnark-crypto allows unchecked memory allocation during vector deserialization

GHSA-cf57-c578-7jvv: Anubis vulnerable to possible XSS via redir parameter when using subrequest auth mode

GHSA-xgp7-7qjq-vg47: n8n Vulnerable to Remote Code Execution via Git Node Pre-Commit Hook

## Duplicate advisory
This advisory has been withdrawn because it is a duplicate of [GHSA-mrqx-mjc4-vfh3](https://github.com/advisories/GHSA-mrqx-mjc4-vfh3). This link is maintained to preserve external references.

## Original Description

Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.3.

**Withdrawn: wallabag subject to Improper Authorization via annotations**

Moderate severity GitHub Reviewed Published Feb 1, 2023 to the GitHub Advisory Database • Updated Feb 2, 2023

Headline

GHSA-xrw3-wqph-3fxg: Withdrawn: wallabag subject to Improper Authorization via annotations

Duplicate advisory

Original Description

ghsa: Latest News