GHSA-rj53-j6jw-7f7g: Babylon vulnerable to chain halt when a message modifies the validator set at the epoch boundary

GHSA-4pfg-2mw5-f8jx: Cloudflare Vite plugin exposes secrets over the built-in dev server

GHSA-5w57-2ccq-8w95: Node.js Sandbox MCP Server vulnerability can lead to Sandbox Escape via Command Injection

GHSA-j47q-rc62-w448: fastapi-guard is vulnerable to ReDoS through inefficient regex

GHSA-36rg-gfq2-3h56: Better Auth Open Redirect Vulnerability in originCheck Middleware Affects Multiple Routes

It has been discovered that login failures have been logged on the default stream with log level "warning" including plain-text user credentials.

**Typo3 Information Disclosure in User Authentication**

Moderate severity GitHub Reviewed Published Jun 5, 2024 to the GitHub Advisory Database • Updated Jun 5, 2024

Headline

GHSA-m96r-7vqm-j95g: Typo3 Information Disclosure in User Authentication

ghsa: Latest News