CVE-2022-29220

github-action-merge-dependabot is an action that automatically approves and merges dependabot pull requests PRs. Prior to version 3.2.0, github-action-merge-dependabot does not check if a commit created by dependabot is verified with the proper GPG key. There is just a check if the actor is set t...

PT-2023-20663 · Unknown · Xwiki Platform

Name of the Vulnerable Software and Affected Versions: XWiki Platform versions 6.2-milestone-1 through 14.8 XWiki Platform versions 14.4 through 14.4.5 XWiki Platform versions 13.10 through 13.10.9 Description: XWiki Platform is a generic wiki platform where, starting in version 6.2-milestone-1,...