GHSA-wgc6-9f6w-h8hx: microlight allows a denial of service

GHSA-64x7-m7rh-9m83: microlight.js has a null pointer dereference vulnerability

GHSA-rvqx-wpfh-mfx7: Langflow Unauth RCE

GHSA-9ghp-w2hm-vfpf: wasmtime_jit_debug Dumps Undefined Memory by `JitDumpFile`

GHSA-f7gq-h8jv-h3cq: ash_authentication_phoenix has Insufficient Session Expiration

An XML External Entity (XXE) vulnerability in the `ebookmeta.get_metadata` function via lxml dependency allows attackers to access sensitive information or cause a Denial of Service (DoS) via crafted XML input.

**ebookmeta XML External Entity vulnerability**

Critical severity GitHub Reviewed Published Jun 7, 2024 to the GitHub Advisory Database • Updated Jun 7, 2024

Headline

GHSA-hx54-pf28-7xch: ebookmeta XML External Entity vulnerability

ghsa: Latest News