Please be careful labeling something as "vulnerabilities" when they aren't. You've described software bugs which should be reported to the maintainer, none of them so far as I can see are vulnerabilities or exploits.