Oracle Mojarra JSF included in Java EE 7 and Eclipse Mojarra JSF versions 2.2 and 2.3 suffer from a cross site scripting vulnerability.
de2a3bd7c514f5251cb9fc4e98c11b318256b46a4c1f1f69e58c04fedcc614ca
DokuWiki version 2018-04-22a Greebo suffers from a CSV formula injection vulnerability that allows for arbitrary code execution.
38a0d8c9e2bdcd800dc35d4dc193605ee19bb114a8e64314caf3b92b9531141a