GHSA-wf8f-6423-gfxg: Jackson-core Vulnerable to Memory Disclosure via Source Snippet in JsonLocation

GHSA-cwwm-hr97-qfxm: SpiceDB checks involving relations with caveats can result in no permission when permission is expected

ProcessWire v3.0.200 was discovered to contain a Cross-Site Request Forgery (CSRF).

**ProcessWire vulnerable to Cross-Site Request Forgery**

Moderate severity GitHub Reviewed Published Oct 31, 2022 • Updated Nov 1, 2022