GHSA-wf8f-6423-gfxg: Jackson-core Vulnerable to Memory Disclosure via Source Snippet in JsonLocation

GHSA-cwwm-hr97-qfxm: SpiceDB checks involving relations with caveats can result in no permission when permission is expected

GHSA-cvx7-x8pj-x2gw: CoreDNS Vulnerable to DoQ Memory Exhaustion via Stream Amplification

GHSA-qx7g-fx8q-545g: Para Inserts Sensitive Information into Log File for Facebook authentication

GHSA-jq8x-v7jw-v675: Duplicate Advisory: users may append `root` to group listings

Feather-Sequelize cleanQuery method uses insecure recursive logic to filter unsupported keys from the query object. This results in a Remote Code Execution (RCE) with privileges of application.

**Feather-Sequelize cleanQuery method vulnerable to Prototype Pollution**

Critical severity GitHub Reviewed Published Oct 26, 2022 • Updated Oct 31, 2022

Headline

GHSA-p5m3-27vh-52j4: Feather-Sequelize cleanQuery method vulnerable to Prototype Pollution

ghsa: Latest News