-
Notifications
You must be signed in to change notification settings - Fork 303
Pull requests: github/advisory-database
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
[GHSA-wm9w-rjj3-j356] Improper Handling of Exceptional Conditions, Uncontrolled...
#4581
opened Jul 4, 2024 by
westonsteimel
Loading…
[GHSA-rc57-9r3x-98cq] XML External Entity Reference in drools
#4580
opened Jul 4, 2024 by
wnicholson
Loading…
[GHSA-hh32-7344-cg2f] Authorization bypass in Spring Security
#4579
opened Jul 4, 2024 by
secjoker
Loading…
[GHSA-hw49-2p59-3mhj] The net/http HTTP/1.1 client mishandled the case where a...
#4577
opened Jul 4, 2024 by
chbiel
Loading…
[GHSA-5rg9-mjfx-pqq5] ArcGIS Enterprise Server 10.8.0 allows a remote attacker...
#4574
opened Jul 3, 2024 by
RandallWilliams
Loading…
[GHSA-pgj4-g5j4-cmfx] cart2quote/module-quotation-encoded Remote Code Execution via downloadCustomOptionAction
#4573
opened Jul 3, 2024 by
fpurser
Loading…
[GHSA-hg58-rf2h-6rr7] CometBFT is unstability during blocksync when syncing from malicious peer
#4569
opened Jun 30, 2024 by
AHMED11178
Loading…
[GHSA-4mgv-m5cm-f9h7] Vault GitHub Action did not correctly mask multi-line secrets in output
#4568
opened Jun 30, 2024 by
GAEAlimited
Loading…
[GHSA-6269-grv3-jc94] An issue was discovered in the stripTags and unescapeHTML...
#4564
opened Jun 28, 2024 by
mcr-paulanand
Loading…
[GHSA-g5h3-w546-pj7f] Spring Boot Security Bypass with Wildcard Pattern Matching on Cloud Foundry
#4529
opened Jun 11, 2024 by
namandf
Loading…
[GHSA-qg5r-95m4-mjgj] Reflected Cross-site Scripting in yiisoft/yii2 Debug mode
#4527
opened Jun 10, 2024 by
rob006
Loading…
[GHSA-cjcc-p67m-7qxm] Unsafe Reflection in base Component class in yiisoft/yii2
#4526
opened Jun 10, 2024 by
rob006
Loading…
[GHSA-2p57-rm9w-gvfp] ip SSRF improper categorization in isPublic
#4522
opened Jun 10, 2024 by
Tushar007079
Loading…
[GHSA-wr3j-pwj9-hqq6] Path traversal in webpack-dev-middleware
#4520
opened Jun 10, 2024 by
murillonr
Loading…
[GHSA-2p57-rm9w-gvfp] ip SSRF improper categorization in isPublic
#4519
opened Jun 10, 2024 by
murillonr
Loading…
[GHSA-3x57-m5p4-rgh4] ZendOpenID potential security issue in login mechanism
#4518
opened Jun 9, 2024 by
Ybs187
Loading…
[GHSA-3x57-m5p4-rgh4] ZendOpenID potential security issue in login mechanism
#4517
opened Jun 8, 2024 by
flexibrah
Loading…
[GHSA-hxgx-584x-vwm8] Appwrite Server-Side Request Forgery vulnerability
#4514
opened Jun 6, 2024 by
abnegate
Loading…
[GHSA-qmx3-m648-hr74] Log Injection in Apache Sling Commons Log and Apache Sling API
#4505
opened Jun 5, 2024 by
SunBK201
Loading…
[GHSA-8vhq-qq4p-grq3] OS Command Injection in Plexus-utils
#4502
opened Jun 5, 2024 by
SunBK201
Loading…
[GHSA-6phf-73q6-gh87] Insecure Deserialization in Apache Commons Beanutils
#4500
opened Jun 5, 2024 by
SunBK201
Loading…
[GHSA-rgv9-q543-rqg4] Uncontrolled Resource Consumption in FasterXML jackson-databind
#4499
opened Jun 5, 2024 by
SunBK201
Loading…
Previous Next
ProTip!
Add no:assignee to see everything that’s not assigned.