Skip to content

Pull requests: github/advisory-database

New pull request New
38 Open 2,525 Closed
38 Open 2,525 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

[GHSA-5x4f-7xgq-r42x] Object state limitation has no effect
#2806 opened Oct 1, 2023 by tdunlap607 Loading…
1
[GHSA-8fw4-xh83-3j6q] Cross-Site Scripting in diagram-js
#2805 opened Oct 1, 2023 by tdunlap607 Loading…
[GHSA-5c2c-cvg6-ghjm] Password stored in plain text by Jenkins Nomad Plugin
#2804 opened Oct 1, 2023 by tdunlap607 Loading…
[GHSA-55m5-whcv-c49c] Use of Uninitialized Resource in smallvec
#2803 opened Oct 1, 2023 by tdunlap607 Loading…
[GHSA-4xf9-pgvv-xx67] Regular Expression Denial of Service in simple-markdown
#2802 opened Oct 1, 2023 by tdunlap607 Loading…
[GHSA-c27h-mcmw-48hv] Deserialization of Untrusted Data in org.codehaus.jackson:jackson-mapper-asl
#2801 opened Sep 29, 2023 by stephengroat-dd Loading…
[GHSA-qqvq-6xgj-jw8g] Heap buffer overflow in vp8 encoding in libvpx in Google...
#2800 opened Sep 29, 2023 by janparisek Loading…
[GHSA-4jv9-3563-23j3] Knex.js has a limited SQL injection vulnerability
#2799 opened Sep 29, 2023 by tdunlap607 Loading…
[GHSA-4cww-f7w5-x525] Stack consumption in trust-dns-server
#2798 opened Sep 29, 2023 by tdunlap607 Loading…
[GHSA-3fr8-mwpp-8h9p] Cross-site scripting in TileServer GL
#2797 opened Sep 29, 2023 by tdunlap607 Loading…
[GHSA-3fgr-xjr6-xqm8] code injection in phpxmlrpc/phpxmlrpc
#2796 opened Sep 29, 2023 by tdunlap607 Loading…
[GHSA-3f5c-4qxj-vmpf] Next.js Directory Traversal Vulnerability
#2795 opened Sep 29, 2023 by tdunlap607 Loading…
[GHSA-35rx-7pc8-6963] API keys stored in plain text by Jenkins Katalon Plugin
#2794 opened Sep 29, 2023 by tdunlap607 Loading…
[GHSA-34wj-p5jm-2p96] Improper Restriction of XML External Entity Reference in python-docx
#2793 opened Sep 29, 2023 by tdunlap607 Loading…
[GHSA-33c7-2mpw-hg34] Log injection in uvicorn
#2792 opened Sep 29, 2023 by tdunlap607 Loading…
[GHSA-2ggq-vfcp-gwhj] Cross-Site Scripting in @hapi/boom
#2791 opened Sep 29, 2023 by tdunlap607 Loading…
[GHSA-2777-2vq8-c4v4] SQL Injection in sequelize
#2790 opened Sep 29, 2023 by tdunlap607 Loading…
[GHSA-j7hp-h8jx-5ppr] libwebp: OOB write in BuildHuffmanTable
#2789 opened Sep 29, 2023 by Nachtalb Loading…
[GHSA-gxpj-cx7g-858c] Regular Expression Denial of Service in debug
#2788 opened Sep 29, 2023 by G-Rath Loading…
[GHSA-j7hp-h8jx-5ppr] libwebp: OOB write in BuildHuffmanTable
#2787 opened Sep 29, 2023 by jasonculverhouse Loading…
[GHSA-5rrv-m36h-qwf8] Use-after-free in chttp
#2786 opened Sep 28, 2023 by tdunlap607 Loading…
[GHSA-hmr4-m2h5-33qx] SQL injection in Django
#2785 opened Sep 28, 2023 by sulaiman-coder Loading…
[GHSA-5m2v-hc64-56h6] Rubyzip denial of service
#2784 opened Sep 28, 2023 by tdunlap607 Loading…
[GHSA-qwph-4952-7xr6] jsonwebtoken vulnerable to signature validation bypass due to insecure default algorithm in jwt.verify()
#2783 opened Sep 28, 2023 by sulaiman-coder Loading…
1
[GHSA-4p8f-2fwv-6xcw] Missing permission check in Jenkins RocketChat Notifier Plugin
#2782 opened Sep 28, 2023 by tdunlap607 Loading…
ProTip! Add no:assignee to see everything that’s not assigned.