The Wayback Machine - https://web.archive.org/web/20230425072109/https://github.com/github/advisory-database/pulls
Skip to content

Pull requests: github/advisory-database

New pull request New
53 Open 1,979 Closed
53 Open 1,979 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

[GHSA-f9xv-q969-pqx4] Uncaught Exception in yaml
#2192 opened Apr 25, 2023 by chadlwilson Loading…
[GHSA-h3r8-h5qw-4r35] sidekiq vulnerable to cross-site scripting
#2191 opened Apr 24, 2023 by aripollak Loading…
[GHSA-vr8j-hgmm-jh9r] If an X.509 certificate contains a malformed policy...
#2190 opened Apr 24, 2023 by AlmogApiiro Loading…
[GHSA-6mqr-q86q-6gwr] Authentication Bypass by CSRF Weakness
#2188 opened Apr 24, 2023 by tdunlap607 Loading…
1
[GHSA-qcc4-3rxf-gf4m] Unauthorized property update in CheckboxGroup component in Vaadin 12-14 and 15-20
#2187 opened Apr 24, 2023 by tdunlap607 Loading…
[GHSA-qf9q-q4hh-qph3] SQL injection in blazer
#2186 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-q9h2-4xhf-23xx] Data races in im
#2185 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-q73f-vjc2-3gqf] OpenStack Image Service (Glance) allows remote authenticated users to read arbitrary file
#2184 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-q56r-mw39-944g] Concrete CMS vulnerable to Improper Authentication
#2183 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-mhp6-pxh8-r675] Cross site scripting in Angular
#2182 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-m69r-9g56-7mv8] HashiCorp Consul vulnerable to authorization bypass
#2181 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-jgm2-m5cg-f66g] Authentication Bypass in Apache Tomcat
#2180 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-j8p3-8m69-2hqq] CakePHP allows remote attackers to spoof their IP
#2179 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-gvpx-9459-w3mj] Cross-Site Scripting in @ckeditor/ckeditor5-link
#2178 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-gmpq-xrxj-xh8m] Arches vulnerable to execution of arbitrary SQL
#2177 opened Apr 23, 2023 by tdunlap607 Loading…
1
[GHSA-f8vr-r385-rh5r] h2 vulnerable to denial of service
#2176 opened Apr 23, 2023 by JohnTitor Loading…
[GHSA-c25x-cm9x-qqgx] Deno improperly handles resizable ArrayBuffer
#2175 opened Apr 23, 2023 by JohnTitor Loading…
1
[GHSA-h835-75hw-pj89] activesupport Cross-site Scripting vulnerability
#2174 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-xrcv-f9gm-v42c] Out-of-bounds Read in Pillow
#2173 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-qv62-xfj6-32xm] RubyGems 2.0.x before 2.0.17, 2.2.x before 2.2.5, and 2.4...
#2172 opened Apr 23, 2023 by jasnow Loading…
[GHSA-5mgj-mvv8-46mw] RubyGems before 1.8.23 does not verify an SSL certificate...
#2171 opened Apr 23, 2023 by jasnow Loading…
[GHSA-228f-g3h7-3fj3] RubyGems before 1.8.23 can redirect HTTPS connections to...
#2170 opened Apr 23, 2023 by jasnow Loading…
[GHSA-xr7r-88qv-q7hm] Out of bounds write in serde_cbor
#2167 opened Apr 22, 2023 by tdunlap607 Loading…
[GHSA-xfqg-p48g-hh94] Login timing attack in ezsystems/ezpublish-kernel
#2166 opened Apr 22, 2023 by tdunlap607 Loading…
2
[GHSA-p8p7-x288-28g6] Server-Side Request Forgery in Request
#2165 opened Apr 22, 2023 by baoanh99s Loading…
ProTip! Updated in the last three days: updated:>2023-04-22.