GHSA-m79r-r765-5f9j: Lobe Chat Desktop vulnerable to Remote Code Execution via XSS in Chat Messages

GHSA-vv9c-xxg7-wmv7: InvokeAI has External Control of File Name or Path

GHSA-9pw5-wx67-q964: @sequa-ai/sequa-mcp has Command Injection vulnerability

GHSA-qm9p-f9j5-w83w: Parcel has an Origin Validation Error vulnerability

GHSA-393w-9x6h-8gc7: Pingora update for MadeYouReset HTTP/2 vulnerability

WSO2 Registry has been identified as vulnerable due to improper output encoding, a Stored Cross Site Scripting (XSS) attack can be carried out by an attacker injecting a malicious payload into the Registry feature of the Management Console.


**WSO2 Registry Stored Cross Site Scripting (XSS) vulnerability**

Moderate severity GitHub Reviewed Published Dec 22, 2023 to the GitHub Advisory Database • Updated Dec 22, 2023

Headline

GHSA-rfq3-wpjh-ppvg: WSO2 Registry Stored Cross Site Scripting (XSS) vulnerability

ghsa: Latest News