github / advisory-database Public

Notifications
Fork 454
Star 1.9k

Code
Issues 69
Pull requests 11
Discussions
Actions
Models
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Models
Security
Insights

Pull requests: github/advisory-database

Labels 15 Milestones 0

New pull request New

11 Open 5,473 Closed

Author

Filter by author

Uh oh!

There was an error while loading. Please reload this page.

Label

Filter by label

Uh oh!

There was an error while loading. Please reload this page.

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Uh oh!

There was an error while loading. Please reload this page.

Milestones

Filter by milestone

Uh oh!

There was an error while loading. Please reload this page.

Reviews

Filter by reviews

No reviews Review required Approved review Changes requested

Assignee

Filter by who’s assigned

Assigned to nobody

Uh oh!

There was an error while loading. Please reload this page.

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated Best match

Most reactions

Pull requests list

[GHSA-j26p-6wx7-f3pw] Youki: If /proc and /sys in the rootfs are symbolic links, they can potentially be exploited to gain access to the host root filesystem.

#6020 opened Aug 15, 2025 by Marco1553

Loading…

[GHSA-xh69-987w-hrp8] resolv vulnerable to DoS via insufficient DNS domain name length validation

#6019 opened Aug 15, 2025 by manunio

Loading…

[GHSA-859w-5945-r5v3] Vite's server.fs.deny bypassed with /. for files under project root

#6018 opened Aug 15, 2025 by Ecg-creator • Draft

[GHSA-6v2p-p543-phr9] golang.org/x/oauth2 Improper Validation of Syntactic Correctness of Input vulnerability

#5995 opened Aug 13, 2025 by jchax

Loading…

[GHSA-m5xw-hwxw-fq3j] Deserialization of untrusted data in IPC and Parquet...

#5988 opened Aug 12, 2025 by jtroup

Loading…

[GHSA-7653-r8cq-rf8w] The Nginx Cache Purge Preload plugin for WordPress is... Stale

#5845 opened Jul 23, 2025 by hsntgm

Loading…

[GHSA-h57w-vh34-f8cw] Code injection in mingSoft MCMS Stale

#5835 opened Jul 18, 2025 by achibear

Loading…

[GHSA-fr5w-98mc-jjvg] Arbitrary file upload in Mingsoft MCMS Stale

#5834 opened Jul 18, 2025 by achibear

Loading…

[GHSA-8w3f-4r8f-pf53] Remote code execution through js2py onCaptchaResult Stale

#5809 opened Jul 15, 2025 by odaysec

Loading…

[GHSA-34rf-485x-g5h7] Arbitrary Command Injection in Kubernetes Headlamp via macOS Process codeSign

#5802 opened Jul 11, 2025 by odaysec

Loading…

[GHSA-9pp5-9c7g-4r83] Spring Security authorization bypass for method security annotations on private methods Keep

#5747 opened Jun 24, 2025 by tomabai

Loading…

ProTip! Updated in the last three days: updated:>2025-08-12.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Uh oh!