Please see that your Magento instances are updated ASAP to prevent a compromise. You need to update to version 2.3.1, 2.2.8 or 2.1.17 to be fully patched against these new vulnerabilities, one of which is an unauthenticated SQL Injection vulnerability. More details can be found here.