Astaruf

**Name of the Vulnerable Software and Affected Versions** Sherlock versions prior to 0.16.1 **Description** The GitHub Actions workflow 'validate modified targets.yml' is susceptible to command injection through the `pull request target` trigger. This allows any GitHub user to execute arbitrary commands on the CI runner and exfiltrate the `GITHUB TOKEN` by opening a pull request, without requiring approval, review, or merging. **Recommendations** Update to version 0.16.1.

**Name of the Vulnerable Software and Affected Versions** BentoPDF versions prior to 2.8.3 **Description** BentoPDF is a self-hostable client-side PDF toolkit. A cross-site scripting issue exists in the Markdown to PDF Tool, which allows an attacker to execute arbitrary JavaScript under certain circumstances. **Recommendations** Update to version 2.8.3.

**Name of the Vulnerable Software and Affected Versions** MagicMirror² versions prior to 2.36.0 **Description** An unauthenticated Server-Side Request Forgery (SSRF) exists in the '/cors' endpoint, which acts as an open HTTP proxy without authentication or URL validation. This allows remote attackers to force the server to perform arbitrary HTTP requests to localhost services, cloud metadata services, and internal networks. The issue is located in the `cors()` function within `js/server functions.js`. Additionally, the `replaceSecretPlaceholder()` function expands environment variable placeholders using the `**VAR NAME**` pattern, which enables the exfiltration of server-side secrets such as API keys, tokens, and database credentials from `process.env`. **Recommendations** Update MagicMirror² to version 2.36.0. As a temporary workaround, restrict access to the '/cors' endpoint to minimize the risk of exploitation.