-
Notifications
You must be signed in to change notification settings - Fork 449
Pull requests: github/advisory-database
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
[GHSA-4j66-8f4r-3pjx] bun vulnerable to OS Command Injection
#5851
opened Jul 23, 2025 by
lirantal
Loading…
[GHSA-v9mx-4pqq-h232] Bun has an Application-level Prototype Pollution vulnerability in the runtime native API for Glo
#5850
opened Jul 23, 2025 by
lirantal
Loading…
[GHSA-rm8p-cx58-hcvx] Axios has Transitive Critical Vulnerability via form-data — Predictable Boundary Values (CVE-2025-7783)
#5849
opened Jul 23, 2025 by
mhassan1
Loading…
[GHSA-7653-r8cq-rf8w] The Nginx Cache Purge Preload plugin for WordPress is...
#5845
opened Jul 23, 2025 by
hsntgm
Loading…
[GHSA-h57w-vh34-f8cw] Code injection in mingSoft MCMS
#5835
opened Jul 18, 2025 by
achibear
Loading…
[GHSA-fr5w-98mc-jjvg] Arbitrary file upload in Mingsoft MCMS
#5834
opened Jul 18, 2025 by
achibear
Loading…
[GHSA-8w3f-4r8f-pf53] Remote code execution through js2py onCaptchaResult
#5809
opened Jul 15, 2025 by
odaysec
Loading…
[GHSA-34rf-485x-g5h7] Arbitrary Command Injection in Kubernetes Headlamp via macOS Process codeSign
#5802
opened Jul 11, 2025 by
odaysec
Loading…
[GHSA-wx5j-54mm-rqqq] HTTP request smuggling in netty
Stale
#5792
opened Jul 5, 2025 by
poc-effectiveness
Loading…
[GHSA-m8p2-495h-ccmh] The SafeHtml annotation in Hibernate-Validator does not properly guard against XSS attacks
#5791
opened Jul 5, 2025 by
poc-effectiveness
Loading…
[GHSA-9fq2-x9r6-wfmf] Numpy Deserialization of Untrusted Data
Stale
#5777
opened Jun 30, 2025 by
boyapatiakhil7
Loading…
[GHSA-9pp5-9c7g-4r83] Spring Security authorization bypass for method security annotations on private methods
Keep
#5747
opened Jun 24, 2025 by
tomabai
Loading…
ProTip!
no:milestone will show everything without a milestone.