Vulnerabilities in Newsletter 3.4.0