Ayato Shitomi

**Name of the Vulnerable Software and Affected Versions** django-allauth versions prior to 65.14.1 **Description** An open redirect issue exists when SAML IdP initiated SSO is enabled, which is disabled by default. This may allow an attacker to redirect users to an arbitrary external website through a crafted URL. **Recommendations** Update to django-allauth version 65.14.1 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 146.0.7680.71 **Description** A flaw exists in the policy enforcement within the PDF handling component of Google Chrome on Android. This issue allows a remote attacker to circumvent navigation restrictions by utilizing a specially crafted HTML page. The Chromium security severity is rated as Medium. **Recommendations** Update Google Chrome to version 146.0.7680.71 or later.

Name of the Vulnerable Software and Affected Versions: Elementor One Click Accessibility versions n/a through 3.1.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker can inject malicious scripts into the website, potentially leading to unauthorized access or control. Recommendations: For Elementor One Click Accessibility versions n/a through 3.1.0, update to a version later than 3.1.0 to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific vulnerability.

**Name of the Vulnerable Software and Affected Versions** N-LINE versions 2.0.6 and prior **Description** The issue allows for code injection, potentially leading to the execution of arbitrary code on the instructor's browser or redirection to a malicious website. **Recommendations** For N-LINE versions 2.0.6 and prior, at the moment, there is no information about a newer version that contains a fix for this issue.