Geyser user impersonation due to incorrect handling of the login JWT

CVE-2021-39177

Minecraft arbitrary JSON file deletion via path traversal

CVE-2021-35054

delta arbitrary programs execution from current directory

CVE-2021-36376

bat arbitrary programs execution from current directory

CVE-2021-36753

Keras arbitrary file overwrite via path traversal in "keras.utils.get_file"

CVE-2021-35958