-
Notifications
You must be signed in to change notification settings - Fork 467
Pull requests: github/advisory-database
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
[GHSA-j95r-86hx-xwxg] Rank Math SEO plugin vulnerable to Server-Side Request Forgery
#6087
opened Sep 4, 2025 by
yehuda-alt
Loading…
[GHSA-wwq7-pxwc-p4rc] Improper Input Validation in Apache Axis2
#6070
opened Sep 1, 2025 by
AndrzejBiernacki2010
Loading…
[GHSA-q4rv-gq96-w7c5] **UNSUPPORTED WHEN ASSIGNED** GzipHandler causes part of request body to be seen as request body of a separate request
#6047
opened Aug 26, 2025 by
yeikel
Loading…
[GHSA-6h5x-7c5m-7cr7] Exposure of Sensitive Information in eventsource
#6045
opened Aug 26, 2025 by
Stonefox36
Loading…
[GHSA-hpqf-m68j-2pfx] js-object-utilities Vulnerable to Prototype Pollution
#6041
opened Aug 21, 2025 by
nkhayet
Loading…
[GHSA-3c93-92r7-j934] Grafana Infinity Datasource Plugin SSRF Vulnerability
#6029
opened Aug 19, 2025 by
DanCech
Loading…
[GHSA-w2cq-g8g3-gm83] content-security-policy-parser Prototype Pollution Vulnerability May Lead to RCE
Stale
#6026
opened Aug 19, 2025 by
byt3n33dl3
Loading…
[GHSA-q355-h244-969h] Komari vulnerable to Cross-site WebSocket Hijacking
#6021
opened Aug 17, 2025 by
byt3n33dl3
Loading…
[GHSA-xh69-987w-hrp8] resolv vulnerable to DoS via insufficient DNS domain name length validation
Stale
#6019
opened Aug 15, 2025 by
manunio
Loading…
[GHSA-6v2p-p543-phr9] golang.org/x/oauth2 Improper Validation of Syntactic Correctness of Input vulnerability
#5995
opened Aug 13, 2025 by
jchax
Loading…
[GHSA-34rf-485x-g5h7] Arbitrary Command Injection in Kubernetes Headlamp via macOS Process codeSign
Stale
#5802
opened Jul 11, 2025 by
opsysdebug
Loading…
[GHSA-9pp5-9c7g-4r83] Spring Security authorization bypass for method security annotations on private methods
Keep
#5747
opened Jun 24, 2025 by
tomabai
Loading…
ProTip!
no:milestone will show everything without a milestone.