KeystoneJS versions prior to 4.0.0-beta.7 suffers from a cross site request forgery vulnerability.
2acad8be2e3b48cc361cd983970ee74f698beafd591902bba094ed773b099d39
PageKit version 1.0.10 suffers from a password reset vulnerability.
f76bc6ce6d8a3efa2db521a6cd848b172880a8b563cf70947d2a9a9b465a6b58