VulnSea
GHSA-fpxg-5xmv-922m — SurrealDB has bypass of field-level SELECT permissions through JSON Patch `copy` and `move` with empty `from` · VulnSea