Testivy

**Name of the Vulnerable Software and Affected Versions** open-falcon dashboard version 0.2.0 **Description** An issue was discovered in the open-falcon dashboard, allowing remote attackers to gain, modify, and delete sensitive information via a crafted POST request to the register interface. **Recommendations** For open-falcon dashboard version 0.2.0, consider disabling the register interface until a patch is available to prevent exploitation. Restrict access to the register interface to minimize the risk of sensitive information being compromised. Avoid using the register interface until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** margox braft-editor version 2.3.8 **Description** The issue is a Cross Site Scripting (XSS) vulnerability that allows remote attackers to execute arbitrary code via the embed media feature. This can lead to unauthorized access and malicious activities on the affected system. **Recommendations** For margox braft-editor version 2.3.8, update to a version that fixes the XSS vulnerability in the embed media feature. At the moment, there is no information about a newer version that contains a fix for this vulnerability.