Pull requests: github/advisory-database
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
[GHSA-vjh7-5r6x-xh6g] CasaOS Gateway vulnerable to incorrect identification of source IP addresses
#2883
opened Oct 23, 2023 by
thomas-chauchefoin-sonarsource
Loading…
[GHSA-m5q5-8mfw-p2hr] CasaOS contains weak JWT secrets
#2882
opened Oct 23, 2023 by
thomas-chauchefoin-sonarsource
Loading…
[GHSA-fj7f-vq84-fh43] Local Code Execution through Argument Injection via dash leading git url parameter in Gemfile.
#2881
opened Oct 23, 2023 by
paul-gerste-sonarsource
Loading…
[GHSA-frqg-7g38-6gcf] Improper escaping of command arguments on Windows leading to command injection
#2880
opened Oct 23, 2023 by
paul-gerste-sonarsource
Loading…
[GHSA-m88m-crr9-jvqq] OpenRefine vulnerable to zip slip in project import
#2879
opened Oct 23, 2023 by
stefan-schiller-sonarsource
Loading…
[GHSA-mrr8-v49w-3333] sweetalert2 v11.6.14 and above contains potentially undesirable behavior
#2877
opened Oct 22, 2023 by
car1ot
Loading…
[GHSA-29mw-wpgm-hmr9] Regular Expression Denial of Service (ReDoS) in lodash
#2875
opened Oct 20, 2023 by
jkmartindale
Loading…
[GHSA-qppj-fm5r-hxr3] swift-nio-http2 vulnerable to HTTP/2 Stream Cancellation Attack
#2874
opened Oct 20, 2023 by
faroukfaiz10
Loading…
[GHSA-rmqp-9w4c-gc7w] Apache Axis 1.x (EOL) may allow RCE when untrusted input is passed to getService
#2870
opened Oct 19, 2023 by
claudioandreantonio
Loading…
[GHSA-qppj-fm5r-hxr3] swift-nio-http2 vulnerable to HTTP/2 Stream Cancellation Attack
#2860
opened Oct 16, 2023 by
joakime
Loading…
[GHSA-f7vh-qwp3-x37m] Deserialization of Untrusted Data in Apache Log4j
#2852
opened Oct 14, 2023 by
SebGondron
Loading…
[GHSA-w9p3-5cr8-m3jj] Deserialization of Untrusted Data in Log4j 1.x
#2850
opened Oct 14, 2023 by
SebGondron
Loading…
[GHSA-j7hp-h8jx-5ppr] libwebp: OOB write in BuildHuffmanTable
Stale
#2787
opened Sep 29, 2023 by
jasonculverhouse
Loading…
[GHSA-fpfv-jqm9-f5jm] Incorrect Comparison in NumPy
Stale
#2757
opened Sep 26, 2023 by
KOSASIH
Loading…
ProTip!
Find all pull requests that aren't related to any open issues with -linked:issue.