-
Notifications
You must be signed in to change notification settings - Fork 372
Pull requests: github/advisory-database
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
[GHSA-hxf3-vgpm-fv9p] CycloneDX cdxgen may execute code contained within build-related files
#5244
by prabhu
was merged Feb 3, 2025
[GHSA-gxr4-xjj5-5px2] Potential XSS vulnerability in jQuery
#5243
by Rudloff
was merged Jan 31, 2025
Loading…
[GHSA-jpcq-cgw6-v4j6] Potential XSS vulnerability in jQuery
#5242
by Rudloff
was merged Jan 31, 2025
Loading…
[GHSA-gxr4-xjj5-5px2] Potential XSS vulnerability in jQuery
#5241
by Rudloff
was merged Jan 30, 2025
Loading…
[GHSA-54xq-cgqr-rpm3] sharp vulnerability in libwebp dependency CVE-2023-4863
#5240
by Xyaren
was closed Jan 30, 2025
Loading…
[GHSA-hff8-hjwv-j9q7] Remote Code Execution on click of <a> Link in markdown preview
#5239
by gshanbhag525
was merged Jan 30, 2025
Loading…
[GHSA-w33c-445m-f8w7] Okio Signed to Unsigned Conversion Error vulnerability
#5237
by sameerbiradar200
was closed Jan 29, 2025
Loading…
[GHSA-93ww-43rr-79v3] Keycloak mTLS Authentication Bypass via Reverse Proxy TLS Termination
#5236
by westonsteimel
was merged Jan 30, 2025
Loading…
[GHSA-v4mq-x674-ff73] AWS Cloud Development Kit (AWS CDK) IAM OIDC custom resource allows connection to unauthorized OIDC provider
#5235
by mfulton26
was merged Jan 29, 2025
Loading…
[GHSA-6rq9-53c3-f7vj] onnx allows Arbitrary File Overwrite in download_model_with_test_data
#5233
by stevegrubb
was merged Jan 27, 2025
Loading…
[GHSA-4cv2-4hjh-77rx] Property reflection in System.Linq.Dynamic.Core
#5232
by larsk2009
was merged Jan 27, 2025
Loading…
[GHSA-4vc8-pg5c-vg4x] Keycloak's improper input validation allows using email as username
#5229
by 7Ragnarok7
was closed Jan 27, 2025
Loading…
[GHSA-g5vr-rgqm-vf78] Spring Framework Path Traversal vulnerability
#5226
by ayamburg-panw
was closed Jan 24, 2025
Loading…
[GHSA-4gc7-5j7h-4qph] Spring Framework DataBinder Case Sensitive Match Exception
#5225
by ayamburg-panw
was closed Jan 24, 2025
Loading…
[GHSA-rjjv-87mx-6x3h] @sveltejs/kit vulnerable to on dev mode 404 page
#5223
by RDIL
was merged Jan 22, 2025
Loading…
[GHSA-qh8g-58pp-2wxh] Eclipse Jetty URI parsing of invalid authority
#5222
by dwaller
was closed Jan 22, 2025
Loading…
[GHSA-hgpp-pp89-4fgf] Action Pack contains database-query restrictions bypass
#5221
by levpachmanov
was merged Jan 22, 2025
Loading…
[GHSA-92w9-2pqw-rhjj] actionpack Improper Authentication vulnerability
#5220
by levpachmanov
was merged Jan 22, 2025
Loading…
[GHSA-2rhx-qhxp-5jpw] Submariner Operator sets unnecessary RBAC permissions in helm charts
#5219
by skitt
was merged Jan 21, 2025
Loading…
[GHSA-gh2w-j7cx-2664] Active Record contains SQL Injection
#5218
by levpachmanov
was merged Jan 21, 2025
Loading…
[GHSA-h835-75hw-pj89] activesupport Cross-site Scripting vulnerability
#5217
by levpachmanov
was merged Jan 21, 2025
Loading…
[GHSA-gh2w-j7cx-2664] Active Record contains SQL Injection
#5216
by levpachmanov
was merged Jan 21, 2025
Loading…
[GHSA-7g65-ghrg-hpf5] actionpack Cross-site Scripting vulnerability
#5215
by levpachmanov
was merged Jan 21, 2025
Loading…
[GHSA-h835-75hw-pj89] activesupport Cross-site Scripting vulnerability
#5214
by levpachmanov
was merged Jan 21, 2025
Loading…
Previous Next
ProTip!
Follow long discussions with comments:>50.