GHSA-pgvc-6h2p-q4f6: Umbraco CMS disclosure of configured password requirements 

GHSA-wj44-9vcg-wjq7: Gogs allows deletion of internal files which leads to remote command execution

GHSA-v62p-rq8g-8h59: pbkdf2 silently disregards Uint8Array input, returning static keys

GHSA-h7cp-r72f-jxh6: pbkdf2 returns predictable uninitialized/zero-filled memory for non-normalized or unimplemented algos

GHSA-jpv7-p47h-f43j: letmein connection limiter allows an arbitrary amount of simultaneous connections

Improper Access Control in GitHub repository microweber/microweber prior to 2.0.0.

**Microweber Improper Access Control vulnerability**

Moderate severity GitHub Reviewed Published Nov 14, 2023 to the GitHub Advisory Database • Updated Nov 14, 2023

Headline

GHSA-q57g-38pc-jwv8: Microweber Improper Access Control vulnerability

ghsa: Latest News