GHSA-j47q-rc62-w448: fastapi-guard is vulnerable to ReDoS through inefficient regex

GHSA-36rg-gfq2-3h56: Better Auth Open Redirect Vulnerability in originCheck Middleware Affects Multiple Routes

GHSA-489j-g2vx-39wf: Transformers vulnerable to ReDoS attack through its SETTING_RE variable

GHSA-p7j4-jwjf-5x9w: LlamaIndex vulnerability in ArxivReader class can cause MD5 hash collisions

GHSA-w42r-mrx7-c633: LlamaIndex has an XML Entity Expansion vulnerability in its sitemap parser

Cross-Site Request Forgery (CSRF) vulnerability in livewire before v3.0.4, allows remote attackers to execute arbitrary code getCsrfToken function.

**livewire Cross-Site Request Forgery vulnerability**

Moderate severity GitHub Reviewed Published Feb 1, 2024 to the GitHub Advisory Database • Updated Feb 1, 2024

Headline

GHSA-2cjh-75gp-34gc: livewire Cross-Site Request Forgery vulnerability

ghsa: Latest News