Skip to content

Pull requests: github/advisory-database

New pull request New
17 Open 5,537 Closed
17 Open 5,537 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

[GHSA-h755-8qp9-cq85] protobufjs Prototype Pollution vulnerability
#6109 opened Sep 10, 2025 by levpachmanov Loading…
[GHSA-g4rg-993r-mgx7] Improper Neutralization of Special Elements used in a Command in Shell-quote
#6108 opened Sep 10, 2025 by levpachmanov Loading…
[GHSA-h44c-m38r-j8w7] Cross-Site Request Forgery (CSRF) vulnerability in Shayan...
#6096 opened Sep 7, 2025 by shayanfp Loading…
1
[GHSA-25pr-6pr6-68v7] Path traversal in atlasboard
#6094 opened Sep 7, 2025 by AryazE Loading…
1
[GHSA-pq67-2wwv-3xjx] tar-fs Vulnerable to Link Following and Path Traversal via Extracting a Crafted tar File
#6093 opened Sep 6, 2025 by AryazE Loading…
2
[GHSA-j95r-86hx-xwxg] Rank Math SEO plugin vulnerable to Server-Side Request Forgery
#6087 opened Sep 4, 2025 by yehuda-alt Loading…
1
[GHSA-wwq7-pxwc-p4rc] Improper Input Validation in Apache Axis2
#6070 opened Sep 1, 2025 by AndrzejBiernacki2010 Loading…
2
[GHSA-q4rv-gq96-w7c5] **UNSUPPORTED WHEN ASSIGNED** GzipHandler causes part of request body to be seen as request body of a separate request
#6047 opened Aug 26, 2025 by yeikel Loading…
1
[GHSA-6h5x-7c5m-7cr7] Exposure of Sensitive Information in eventsource
#6045 opened Aug 26, 2025 by Stonefox36 Loading…
2
[GHSA-hpqf-m68j-2pfx] js-object-utilities Vulnerable to Prototype Pollution Stale
#6041 opened Aug 21, 2025 by nkhayet Loading…
3
[GHSA-3c93-92r7-j934] Grafana Infinity Datasource Plugin SSRF Vulnerability Stale
#6029 opened Aug 19, 2025 by DanCech Loading…
7
[GHSA-w2cq-g8g3-gm83] content-security-policy-parser Prototype Pollution Vulnerability May Lead to RCE Stale
#6026 opened Aug 19, 2025 by byt3n33dl3 Loading…
6
[GHSA-q355-h244-969h] Komari vulnerable to Cross-site WebSocket Hijacking Stale
#6021 opened Aug 17, 2025 by byt3n33dl3 Loading…
8
[GHSA-xh69-987w-hrp8] resolv vulnerable to DoS via insufficient DNS domain name length validation Stale
#6019 opened Aug 15, 2025 by manunio Loading…
2
[GHSA-6v2p-p543-phr9] golang.org/x/oauth2 Improper Validation of Syntactic Correctness of Input vulnerability
#5995 opened Aug 13, 2025 by jchax Loading…
6
[GHSA-34rf-485x-g5h7] Arbitrary Command Injection in Kubernetes Headlamp via macOS Process codeSign Stale
#5802 opened Jul 11, 2025 by opsysdebug Loading…
5
[GHSA-9pp5-9c7g-4r83] Spring Security authorization bypass for method security annotations on private methods Keep
#5747 opened Jun 24, 2025 by tomabai Loading…
4
ProTip! no:milestone will show everything without a milestone.