Regular Expression Denial Of Service (ReDoS)

http-cache-semantics is vulnerable to Regular Expression Denial Of Service ReDoS. The vulnerability exists in the index.js because of insufficient regular expression complexity which allows an attacker to cause an application crash...

Authentication flaw

OpenClinic GA versions 5.09.02 and 5.89.05b contain an authentication mechanism within the system that does not provide sufficient complexity to protect against brute force attacks, which may allow unauthorized users to access the system after no more than a fixed maximum number of attempts...