GHSA-hxrr-x32w-cg8g: HAX CMS vulnerable to Local File Inclusion via saveOutline API Location Parameter

GHSA-2vc4-3hx7-v7v7: Hax CMS Stored Cross-Site Scripting vulnerability

Prototype pollution vulnerability in stealjs steal via the alias variable in babel.js.

**steal vulnerable to Prototype Pollution via alias variable**

Moderate severity GitHub Reviewed Published Sep 21, 2022 • Updated Sep 21, 2022