Skip to content

Pull requests: github/advisory-database

New pull request New
20 Open 1,851 Closed
20 Open 1,851 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

[GHSA-776f-qx25-q3cc] xml2js is vulnerable to prototype pollution
#2030 opened Apr 9, 2023 by OIRNOIR Loading…
[GHSA-gpqc-4pp7-5954] Authentication Bypass by CSRF Weakness
#2029 opened Apr 9, 2023 by jasnow Loading…
1
[GHSA-8xfw-5q82-3652] Authentication Bypass by CSRF Weakness
#2028 opened Apr 9, 2023 by jasnow Loading…
1
[GHSA-6mqr-q86q-6gwr] Authentication Bypass by CSRF Weakness
#2027 opened Apr 9, 2023 by jasnow Loading…
1
[GHSA-rjvg-8v36-xv9r] element-plus 2.0.5 is vulnerable to Cross Site Scripting ...
#2026 opened Apr 8, 2023 by Esonhugh Loading…
[GHSA-44vj-36hg-g8rr] An XSS issue has been discovered in phpLDAPadmin before 1...
#1931 opened Apr 2, 2023 by williamdes Loading…
7
[GHSA-rp65-9cf3-cjxr] Inefficient Regular Expression Complexity in nth-check
#1899 opened Mar 31, 2023 by sude-go Loading…
3
[GHSA-wg72-3rf2-wvp5] api/views/user.py in LibrePhotos before e19e539 has...
#1819 opened Mar 25, 2023 by go-compile Loading…
1
[GHSA-jp27-cwp2-5qqr] fixed so json represent same as described in text
#1807 opened Mar 22, 2023 by 7h3Rabbit Loading…
5
[GHSA-hc6q-2mpp-qw7j] Cross-realm object access in Webpack 5
#1789 opened Mar 15, 2023 by 0723Cu Loading…
1
[GHSA-8jh9-wqpf-q52c] sweetalert2 v8.19.1 and above contains hidden functionality
#1787 opened Mar 14, 2023 by sukh-idgateway Loading…
3
[GHSA-r38f-c4h4-hqq2] PostgreSQL JDBC Driver SQL Injection in ResultSet.refreshRow() with malicious column names
#1783 opened Mar 14, 2023 by JBrown0x90 Loading…
2
[GHSA-w7q9-p3jq-fmhm] Uncontrolled resource consumption in jpeg-js
#1778 opened Mar 13, 2023 by avnerbarr Loading…
1
[GHSA-cf6r-3wgc-h863] Polymorphic deserialization of malicious object in jackson-databind
#1768 opened Mar 9, 2023 by Osmankic-Adis_pfghub Loading…
2
[GHSA-269g-pwp5-87pp] TemporaryFolder on unix-like systems does not limit access to created files
#1764 opened Mar 9, 2023 by sebastian-rose_cpdev Loading…
7
[GHSA-rp65-9cf3-cjxr] Inefficient Regular Expression Complexity in nth-check
#1763 opened Mar 8, 2023 by NManning_Perkins Loading…
1
[GHSA-rc2q-x9mf-w3vf] TestNG is vulnerable to Path Traversal
#1746 opened Mar 2, 2023 by leerho Loading…
1
[GHSA-rprw-h62v-c2w7] PyYAML insecurely deserializes YAML strings leading to arbitrary code execution
#1736 opened Mar 1, 2023 by DominickMad Loading…
1
[GHSA-28f8-hqmc-7ph8] Malicious Package in ember-power-timepicker
#1712 opened Feb 20, 2023 by oliverchang Loading…
[GHSA-22wj-vf5f-wrvj] Password exposure in H2 Database
#997 opened Dec 2, 2022 by mrjonstrong Loading…
1
ProTip! no:milestone will show everything without a milestone.