20 Pull requests merged by 13 people

• [GHSA-67hx-6x53-jw92] Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code

  #2924 merged Dec 8, 2023

• [GHSA-6fcr-9h9g-23fq] Denial of Service in ipfs-bitswap

  #3036 merged Dec 7, 2023

• [GHSA-7cvf-p83w-48q6] Malicious Package in beffer-xor

  #3037 merged Dec 7, 2023

• [GHSA-j59f-6m4q-62h6] Improper Key Verification in ipns

  #3040 merged Dec 7, 2023

• [GHSA-r5xw-q988-826m] Remote Memory Exposure in mongoose

  #3041 merged Dec 7, 2023

• [GHSA-x6m6-5hrf-fh6r] Denial of Service in markdown-it-toc-and-anchor

  #3042 merged Dec 7, 2023

• [GHSA-2p62-c4rm-mr72] Malicious Package in another-date-picker

  #3035 merged Dec 7, 2023

• [GHSA-mjmq-gwgm-5qhm] Apache MINA SSHD information disclosure vulnerability

  #3034 merged Dec 7, 2023

• [GHSA-5m2h-7rf2-rpx6] UniSharp Laravel Filemanager directory traversal vulnerability

  #3028 merged Dec 7, 2023

• [GHSA-f8x6-m9f5-ffp8] Unrestricted Upload of File with Dangerous Type in unisharp/laravel-filemanager

  #3027 merged Dec 7, 2023

• [GHSA-4grx-2x9w-596c] Marvin Attack: potential key recovery through timing sidechannels

  #3025 merged Dec 6, 2023

• [GHSA-c38w-74pg-36hr] Marvin Attack: potential key recovery through timing sidechannels

  #3026 merged Dec 6, 2023

• [GHSA-vmq6-5m68-f53m] logback serialization vulnerability

  #3024 merged Dec 5, 2023

• [GHSA-vmq6-5m68-f53m] logback serialization vulnerability

  #3022 merged Dec 5, 2023

• [GHSA-vmq6-5m68-f53m] logback serialization vulnerability

  #3020 merged Dec 5, 2023

• [GHSA-vmq6-5m68-f53m] logback serialization vulnerability

  #3018 merged Dec 5, 2023

• [GHSA-hx93-gc73-5rpr] Exposure of Sensitive Information in Elastic APM .NET Agent

  #3016 merged Dec 5, 2023

• [GHSA-jfhm-5ghh-2f97] cryptography vulnerable to NULL-dereference when loading PKCS7 certificates

  #3014 merged Dec 5, 2023

• [GHSA-jpr7-q523-hx25] phpseclib vulnerable to denial of service

  #3012 merged Dec 5, 2023

• [GHSA-jpr7-q523-hx25] phpseclib vulnerable to denial of service

  #3007 merged Dec 5, 2023

2 Pull requests opened by 1 person

• [GHSA-4grx-2x9w-596c] Marvin Attack: potential key recovery through timing sidechannels

  #3029 opened Dec 7, 2023

• [GHSA-c38w-74pg-36hr] Marvin Attack: potential key recovery through timing sidechannels

  #3030 opened Dec 7, 2023

1 Issue closed by 1 person

• support multiple language

  #75 closed Dec 6, 2023

1 Issue opened by 1 person

• cve-2023-44487

  #3023 opened Dec 5, 2023

1 Unresolved conversation

Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.

• [GHSA-8fgr-w2w7-3965] An issue found in Paradox Security Systems IPR512 allows...

  #3017 commented on Dec 5, 2023 • 1 new comment