InvoicePlane version 1.4.8 has an incorrect access control for password resets.
4f1f6d020d0df51730234c273c5ebe04bcb499e4e104dc4c746cc3620e0691fc
Cherry Music version 0.35.1 suffers from an arbitrary file disclosure vulnerability.
96b710d58bf275eab928be65aea31eae56eac18aee876021c06ecb76c47164df