github / advisory-database Public

Notifications
Fork 296
Star 1.6k

Code
Issues 43
Pull requests 34
Discussions
Actions
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Security
Insights

Pull requests: github/advisory-database

Labels 15 Milestones 0

New pull request New

34 Open 3,149 Closed

Author

Filter by author

Label

Filter by label

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Milestones

Filter by milestone

Reviews

Filter by reviews

No reviews Review required Approved review Changes requested

Assignee

Filter by who’s assigned

Assigned to nobody

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated Best match

Most reactions

Pull requests list

Improve GHSA-gwrp-pvrq-jmwv

#3506 opened Feb 11, 2024 by wtwhite

Loading…

[GHSA-78xj-cgh5-2h22] NPM IP package vulnerable to Server-Side Request Forgery (SSRF) attacks

#3504 opened Feb 10, 2024 by G-Rath

Loading…

[GHSA-2jxw-4hm4-6w87] SQL injection in llama-index

#3503 opened Feb 10, 2024 by vishant007

Loading…

[GHSA-f7f8-8qv6-p289] A cross-site scripting (XSS) vulnerability in all...

#3502 opened Feb 10, 2024 by m3t3kh4n

Loading…

[GHSA-w6j5-fp4m-crpf] A cross-site request forgery (CSRF) vulnerability in all...

#3501 opened Feb 10, 2024 by m3t3kh4n

Loading…

[GHSA-6g66-738j-p78c] Lack of authentication in all versions of the fileserver...

#3499 opened Feb 10, 2024 by m3t3kh4n

Loading…

[GHSA-88qh-8c27-5f9w] rc before 1.7.1-5 insecurely creates temporary files.

#3497 opened Feb 9, 2024 by cpropps-sysdig

Loading…

[GHSA-r53v-vm87-f72c] Moderate severity vulnerability that affects org.apache.axis:axis

#3494 opened Feb 9, 2024 by AndrzejBiernacki2010

Loading…

[GHSA-5v34-g2px-j4fw] Improper Handling of Length Parameter Inconsistency in Apache Ant

#3493 opened Feb 9, 2024 by AndrzejBiernacki2010

Loading…

[GHSA-2cjh-75gp-34gc] livewire Cross-Site Request Forgery vulnerability

#3490 opened Feb 8, 2024 by valorin

Loading…

[GHSA-cgr9-h9qq-x9fx] Authentication Bypass via 3rd party TYPO3 extension 'salted user password hashes'

#3488 opened Feb 8, 2024 by ohader

Loading…

[GHSA-4vhj-98r6-424h] In Bouncy Castle JCE Provider it is possible to inject extra elements in the sequence making up the signature and still have it validate

#3486 opened Feb 8, 2024 by AndrzejBiernacki2010

Loading…

[GHSA-cqpc-x2c6-2gmf] Unsecured WMS dynamic styling sld=<url> parameter affords blind unauthenticated SSRF

#3483 opened Feb 7, 2024 by mprins

Loading…

[GHSA-qf9m-vfgh-m389] FastAPI Content-Type Header ReDoS

#3479 opened Feb 5, 2024 by huonw

Loading…

[GHSA-9v9h-cgj8-h64p] Issue summary: Processing a maliciously formatted PKCS12...

#3472 opened Feb 4, 2024 by m3t3kh4n

Loading…

[GHSA-8h5w-f6q9-wg35]: remove vulnerability since it is rejected

#3444 opened Jan 29, 2024 by dippie8

Loading…

[GHSA-67hx-6x53-jw92] Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code

#3311 opened Jan 23, 2024 by aka2024

Loading…

[GHSA-98g6-xh36-x2p7] Microsoft.Data.SqlClient and System.Data.SqlClient vulnerable to SQL Data Provider Security Feature Bypass

Stale

#3291 opened Jan 17, 2024 by Mike-Harwood

Loading…

[GHSA-5wj4-wffq-3378] Ingress nginx annotation injection causes arbitrary command execution

Stale

#3287 opened Jan 15, 2024 by r0binak

Loading…

[GHSA-rp65-9cf3-cjxr] Inefficient Regular Expression Complexity in nth-check

Stale

#3272 opened Jan 7, 2024 by Apetree100122

Loading…

[GHSA-733r-8xcp-w9mr] Flarum's logout Route allows open redirects

Stale

#3271 opened Jan 6, 2024 by ErArif01

Loading…

[GHSA-7c44-7j7v-w554] Buildkite Elastic CI for AWS symbolic link following vulnerability

#3265 opened Jan 4, 2024 by leifdreizler

Loading…

[GHSA-r5hg-349q-mg2q] Buildkite Elastic CI for AWS time-of-check-time-of-use race condition vulnerability

#3264 opened Jan 4, 2024 by leifdreizler

Loading…

[GHSA-67hx-6x53-jw92] Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code

#3258 opened Jan 3, 2024 by SAEED2ALAHMARI

Loading…

[GHSA-m7xj-ccqc-p4g2] Directory traversal vulnerability in Apache Tomcat 4.1.0...

#3251 opened Jan 2, 2024 by sunSUNQ

Loading…

Previous 1 2 Next

Previous Next

ProTip! Filter pull requests by the default branch with base:main.

Jan	FEB	Mar
	12
2023	2024	2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly