GHSA-48q3-prgv-gm4w: Parse Server exposes the data schema via GraphQL API

GHSA-7pgw-q3qp-6pgq: DynamicPageList3 vulnerability exposes hidden/suppressed usernames

GHSA-qf34-qpr4-5pph: docusaurus-plugin-content-gists vulnerability exposes GitHub Personal Access Token

GHSA-q92v-3f4w-5xg8: Jenkins Applitools Eyes Plugin vulnerability exposes unencrypted keys to certain authenticated users

GHSA-2g8w-9933-36vr: Jenkins Warrior Framework Plugin vulnerability exposes unencrypted passwords to certain authenticated users

MolecularFaces before 0.3.0 is vulnerable to cross site scripting. A remote attacker can execute arbitrary JavaScript in the context of a victim browser via crafted molfiles.




**JavaScript execution via malicious molfiles (XSS)**

Moderate severity GitHub Reviewed Published Jan 19, 2024 to the GitHub Advisory Database • Updated Jan 23, 2024

Headline

GHSA-wc6f-qjxc-622v: JavaScript execution via malicious molfiles (XSS)

ghsa: Latest News