-
Notifications
You must be signed in to change notification settings - Fork 372
Pull requests: github/advisory-database
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
[GHSA-9x64-5r7x-2q53] Malicious Package in flatmap-stream
invalid
This doesn't seem right
#5315
by Sicmade671
was closed Feb 28, 2025
Loading…
[GHSA-4fwr-mh5q-hchh] io.quarkus:quarkus-resteasy: Memory Leak in Quarkus RESTEasy Classic When Client Requests Timeout
#5314
by r3kumar
was merged Feb 27, 2025
Loading…
[GHSA-m6vm-37g8-gqvh] MySQL Connectors takeover vulnerability
#5313
by eliasbuenosdias
was closed Feb 26, 2025
Loading…
[GHSA-9442-gm4v-r222] Undertow's url-encoded request path information can be broken on ajp-listener
#5311
by jamiejackson
was merged Feb 24, 2025
Loading…
[GHSA-wcx3-63mm-h8x6] MediaWiki UnlinkedWikibase Cross-site Scripting vulnerability
#5310
by R4356th
was merged Feb 25, 2025
Loading…
[GHSA-jpxc-vmjf-9fcj] Ansible vulnerable to Insertion of Sensitive Information into Log File
#5307
by Klaas-
was merged Feb 24, 2025
Loading…
[GHSA-76p7-773f-r4q5] Cross-site Scripting (XSS) in serialize-javascript
#5306
by mhassan1
was merged Feb 21, 2025
Loading…
[GHSA-qf6m-6m4g-rmrc] Mautic has insufficient authentication in upgrade flow
#5305
by RCheesley
was merged Feb 21, 2025
Loading…
[GHSA-pc47-g7gv-4gpw] @rpldy/uploader prototype pollution
#5304
by yoavniran
was merged Feb 21, 2025
Loading…
[GHSA-2rmj-mq67-h97g] Spring Framework DoS via conditional HTTP request
#5303
by weddige
was merged Feb 21, 2025
Loading…
[GHSA-rfvw-5848-gxc5] Silverstripe Flash Clipboard Reflected XSS
#5302
by GuySartorelli
was closed Feb 28, 2025
Loading…
[GHSA-ggv3-vmgw-xv2q] @tanstack/form-core prototype pollution
#5301
by Balastrong
was merged Feb 20, 2025
Loading…
[GHSA-vq52-99r9-h5pw] Server-side Request Forgery (SSRF) in hackney
#5300
by benoitc
was merged Feb 20, 2025
Loading…
[GHSA-vvfq-8hwr-qm4m] Nokogiri updates packaged libxml2 to 2.13.6 to resolve CVE-2025-24928 and CVE-2024-56171
#5299
by djpremier
was closed Feb 20, 2025
Loading…
[GHSA-vvfq-8hwr-qm4m] Nokogiri updates packaged libxml2 to 2.13.6 to resolve CVE-2025-24928 and CVE-2024-56171
#5298
by djpremier
was closed Feb 19, 2025
Loading…
[GHSA-389x-839f-4rhx] Denial of Service attack on windows app using Netty
#5297
by jfposton
was merged Feb 19, 2025
Loading…
[GHSA-32h7-7j94-8fc2] Mattermost vulnerable to denial of service via large number of emoji reactions
#5296
by c0rydoras
was merged Feb 19, 2025
Loading…
[GHSA-389x-839f-4rhx] Denial of Service attack on windows app using Netty
#5295
by JensBoening1337
was merged Feb 19, 2025
Loading…
[GHSA-2x2g-32r7-p4x8] Apache Kafka Clients: Privilege escalation to filesystem read-access via automatic ConfigProvider
#5294
by pjfanning
was merged Feb 18, 2025
Loading…
[GHSA-67mh-4wv8-2f99] esbuild enables any website to send any requests to the development server and read the response
#5293
by taobojlen
was closed Feb 18, 2025
Loading…
[GHSA-rmvr-2pp2-xj38] @octokit/request has a Regular Expression in fetchWrapper that Leads to ReDoS Vulnerability Due to Catastrophic Backtracking
#5292
by MaikelvandenHurk-TomTom
was merged Feb 18, 2025
Loading…
[GHSA-7g2v-jj9q-g3rg] Possible Log Injection in Rack::CommonLogger
#5290
by lfittl
was merged Feb 18, 2025
Loading…
[GHSA-7g2v-jj9q-g3rg] Possible Log Injection in Rack::CommonLogger
#5289
by matthewbjones
was merged Feb 18, 2025
Loading…
[GHSA-7g2v-jj9q-g3rg] Possible Log Injection in Rack::CommonLogger
#5288
by lostapathy
was merged Feb 18, 2025
Loading…
ProTip!
no:milestone will show everything without a milestone.