Bookwyrm versions 0.4.3 and below suffer from an authentication bypass vulnerability due to a lack of rate limiting on OTP checks.
01182b49f5094c1c536e28a7cca127e1933e717f4d3a739892d462bc0afce375
Showdoc versions 2.10.3 and below suffer from a persistent cross site scripting vulnerability.
9794c5dc51ff960938f2de93bd6a7f9916dd3f208482681592b1d965acd7691a