Pull requests: github/advisory-database
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
[GHSA-7gj7-224w-vpr3] Thymeleaf, as used in Spring Boot Admin, allows sandbox bypass via crafted HTML
#2555
opened Jul 29, 2023 by
danielfernandez
Loading…
[GHSA-f8vr-r385-rh5r] h2 vulnerable to denial of service
#2554
opened Jul 29, 2023 by
Apetree100122
Loading…
[GHSA-cmm9-mgm5-9r42] pandas through 1.0.3 can unserialize and execute commands...
#2553
opened Jul 28, 2023 by
felickz
Loading…
[GHSA-3p62-6fjh-3p5h] Keycloak vulnerable to cross-site scripting when validating URI-schemes on SAML and OIDC
#2549
opened Jul 27, 2023 by
uxdom
Loading…
[GHSA-3h6f-g5f3-gc4w] Using "**" as a pattern in Spring Security configuration ...
#2546
opened Jul 27, 2023 by
bbossola
Loading…
[GHSA-6hvf-xvwm-vrw4] XMLTooling Library Incorrectly Handles Some Exceptions
#2542
opened Jul 27, 2023 by
twn
Loading…
[GHSA-qwph-4952-7xr6] jsonwebtoken vulnerable to signature validation bypass due to insecure default algorithm in jwt.verify()
#2537
opened Jul 27, 2023 by
sulaiman-coder
Loading…
[GHSA-q9w4-w667-qqj4] ckeditor-wordcount-plugin vulnerable to Cross-site Scripting in Source Mode of Editor
#2523
opened Jul 26, 2023 by
ohader
Loading…
[GHSA-65j5-vpm7-6xp4] Smarty Path Traversal Vulnerability
#2520
opened Jul 25, 2023 by
Ocramius
Loading…
[GHSA-cf7p-gm2m-833m] cryptography mishandles SSH certificates
#2519
opened Jul 24, 2023 by
alanc
Loading…
[GHSA-c2qf-rxjj-qqgw] semver vulnerable to Regular Expression Denial of Service
#2516
opened Jul 22, 2023 by
sammyfilly
Loading…
Reporting Inaccurate Affected Components in GHSA-grc3-8q8m-4j7c
#2512
opened Jul 21, 2023 by
catch22out
Loading…
Reporting Inaccurate Affected Components in GHSA-7q8g-gpfp-v8gx
#2511
opened Jul 21, 2023 by
catch22out
Loading…
[GHSA-6hvf-xvwm-vrw4] XMLTooling Library Incorrectly Handles Some Exceptions
#2509
opened Jul 20, 2023 by
njuneau-coveo
Loading…
[GHSA-w49p-h6v2-88hr] D-Link DIR_878_FW1.30B08 was discovered to contain a...
#2508
opened Jul 20, 2023 by
c0crow
Loading…
[GHSA-257q-pv89-v3xv] jQuery Cross Site Scripting vulnerability
#2502
opened Jul 18, 2023 by
kokizzu
Loading…
[GHSA-p8p7-x288-28g6] Server-Side Request Forgery in Request
#2500
opened Jul 18, 2023 by
G-Rath
Loading…
[GHSA-jq37-96mr-9vvh] Windows Terminal Remote Code Execution Vulnerability.
#2499
opened Jul 18, 2023 by
dgl
Loading…
[GHSA-257q-pv89-v3xv] jQuery Cross Site Scripting vulnerability
#2497
opened Jul 15, 2023 by
rrthomas
Loading…
[GHSA-p8p7-x288-28g6] Server-Side Request Forgery in Request
#2495
opened Jul 13, 2023 by
NikoRaisanen
Loading…
[GHSA-22wj-vf5f-wrvj] Password exposure in H2 Database
#2482
opened Jul 8, 2023 by
gdoenlen
Loading…
[GHSA-hrpp-h998-j3pp] qs vulnerable to Prototype Pollution
#2477
opened Jul 6, 2023 by
jpinz
Loading…
[GHSA-p2fh-2h23-6grg] antfu/utils vulnerable to prototype pollution
#2457
opened Jun 30, 2023 by
rgmz
Loading…
[GHSA-g753-ghr7-q33w] cyfs-base vulnerable to misaligned pointer dereference in
ChunkId::new
#2452
opened Jun 26, 2023 by
gallegosdamian505
Loading…
Previous Next
ProTip!
Follow long discussions with comments:>50.