GHSA-8vcg-cfxj-p5m3: Weblate is vulnerable to RCE through Git config file overwrite

GHSA-g925-f788-4jh7: Weblate has an arbitrary file read via symbolic links

GHSA-xm59-rqc7-hhvf: nbconvert has an uncontrolled search path that leads to unauthorized code execution on Windows

GHSA-x8cp-jf6f-r4xh: AWS SDK for PHP's S3 Encryption Client has a Key Commitment Issue

GHSA-2xgq-q749-89fq: AWS SDK for Ruby's S3 Encryption Client has a Key Commitment Issue

airvertco frappejs v0.0.11 was discovered to contain a prototype pollution via the function registerView. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.

**frappejs was discovered to contain a prototype pollution via the function registerView**

Moderate severity GitHub Reviewed Published Jul 1, 2024 to the GitHub Advisory Database • Updated Jul 1, 2024

Headline

GHSA-gc7m-596h-x57r: frappejs was discovered to contain a prototype pollution via the function registerView

ghsa: Latest News