Pull requests: github/advisory-database
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
[GHSA-wrvr-8mpx-r7pp] mime Regular Expression Denial of Service when MIME lookup performed on untrusted user input
#3213
opened Dec 26, 2023 by
ayatweb
Loading…
[GHSA-wf5v-jhxj-q632] java/org/apache/coyote/ajp/AbstractAjpProcessor.java in...
#3212
opened Dec 26, 2023 by
q5438722
Loading…
[GHSA-97gm-mcv6-cphm] Liferay Portal through 6.2.10 allows remote authenticated...
#3211
opened Dec 26, 2023 by
q5438722
Loading…
[GHSA-428j-q447-47rw] The users/get program in the User RPC API in Apache Rave...
#3210
opened Dec 26, 2023 by
q5438722
Loading…
[GHSA-72xf-g2v4-qvf3] tough-cookie Prototype Pollution vulnerability
#3209
opened Dec 26, 2023 by
ayatweb
Loading…
[GHSA-rp65-9cf3-cjxr] Inefficient Regular Expression Complexity in nth-check
#3208
opened Dec 26, 2023 by
ayatweb
Loading…
[GHSA-67hx-6x53-jw92] Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code
#3207
opened Dec 26, 2023 by
ayatweb
Loading…
[GHSA-q79q-94j7-5mgg] Dozer improperly uses a reflection-based approach to type...
#3206
opened Dec 26, 2023 by
q5438722
Loading…
[GHSA-ww39-953v-wcq6] glob-parent vulnerable to Regular Expression Denial of Service in enclosure regex
#3205
opened Dec 26, 2023 by
ayatweb
Loading…
[GHSA-4m48-j3xj-px27] MyBatis plus v3.4.3 was discovered to contain a SQL...
#3204
opened Dec 26, 2023 by
q5438722
Loading…
[GHSA-9qhq-j4xm-cw48] The invokeNextValve function in identity/federation...
#3202
opened Dec 26, 2023 by
q5438722
Loading…
[GHSA-q44p-q588-242q] jQuery 1.4.2 allows remote attackers to conduct cross...
#3201
opened Dec 26, 2023 by
q5438722
Loading…
[GHSA-f8w9-66fp-3jgw] A reflected cross-site scripting vulnerability in Jenkins...
#3200
opened Dec 26, 2023 by
q5438722
Loading…
[GHSA-6w3h-vq7m-v3qf] A exposure of sensitive information vulnerability exists...
#3199
opened Dec 26, 2023 by
q5438722
Loading…
[GHSA-38cr-2ph5-frr9] Apache Struts REST Plugin can potentially allow a DoS attack
#3196
opened Dec 25, 2023 by
sunSUNQ
Loading…
[GHSA-cr6j-3jp9-rw65] Apache Struts vulnerable to remote command execution (RCE) due to improper input validation
#3195
opened Dec 25, 2023 by
sunSUNQ
Loading…
[GHSA-gg9m-fj3v-r58c] REST Plugin in Apache Struts uses an XStreamHandler with an instance of XStream for deserialization without any type filtering
#3194
opened Dec 25, 2023 by
sunSUNQ
Loading…
[GHSA-x5x7-3v85-wpc4] Apache Struts allows entering a custom URL in a form field if built-in URLValidator is used
#3193
opened Dec 25, 2023 by
sunSUNQ
Loading…
[GHSA-8mr5-h28g-36qx] Spring AOP functionality (Struts) vulnerable to DoS attack
#3192
opened Dec 25, 2023 by
sunSUNQ
Loading…
[GHSA-9gp7-jvm2-r4mx] Moderate severity vulnerability that affects org.apache.struts:struts2-core
#3191
opened Dec 25, 2023 by
sunSUNQ
Loading…
[GHSA-j77q-2qqg-6989] Apache Struts vulnerable to remote arbitrary command execution due to improper input validation
#3190
opened Dec 25, 2023 by
sunSUNQ
Loading…
[GHSA-8fx9-5hx8-crhm] Apache Struts 2.0.1 uses an unintentional expression in a Freemarker tag instead of string literal
#3189
opened Dec 25, 2023 by
sunSUNQ
Loading…
[GHSA-86vq-8qhc-5rqw] Possible DoS attack when using URLValidator
#3188
opened Dec 25, 2023 by
sunSUNQ
Loading…
[GHSA-xg75-68x3-7p3q] Possible DoS attack when using URLValidator
#3186
opened Dec 25, 2023 by
sunSUNQ
Loading…
Previous Next
ProTip!
Filter pull requests by the default branch with base:main.