The Wayback Machine - https://web.archive.org/web/20230428090238/https://github.com/github/advisory-database/pulls
Skip to content

Pull requests: github/advisory-database

New pull request New
52 Open 1,998 Closed
52 Open 1,998 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

[GHSA-5pm2-9mr2-3frq] Component takeover in Oracle Data Provider for .NET
#2211 opened Apr 27, 2023 by alexkeh Loading…
1
[GHSA-6v39-p2xq-g5c3] Missing authentication in ShenYu
#2210 opened Apr 27, 2023 by tdunlap607 Loading…
[GHSA-6q49-35h6-rq2p] Browsershot version 3.57.3 vulnerable to improper input validation
#2209 opened Apr 27, 2023 by tdunlap607 Loading…
[GHSA-6278-2q4m-cmf3] ZK Framework vulnerable to malicious POST
#2208 opened Apr 27, 2023 by tdunlap607 Loading…
[GHSA-5jp2-vwrj-99rf] Team scope authorization bypass when Post/Put request with :team_name in body, allows HTTP parameter pollution
#2207 opened Apr 27, 2023 by tdunlap607 Loading…
1
[GHSA-4pv3-63jw-4jw2] Missing Release of Memory after Effective Lifetime in Apache Tika
#2206 opened Apr 27, 2023 by tdunlap607 Loading…
[GHSA-4936-rj25-6wm6] nori contains Improper Input Validation
#2205 opened Apr 27, 2023 by tdunlap607 Loading…
[GHSA-46r5-59fg-2fjc] Deserialization of Untrusted Data in Infinispan
#2204 opened Apr 27, 2023 by tdunlap607 Loading…
[GHSA-3mgp-fx93-9xv5] XSS vulnerability that affects bootstrap
#2203 opened Apr 27, 2023 by tdunlap607 Loading…
[GHSA-4r6j-fwcx-94cf] snowflake-connector-python is vulnerable to Regular Expression Denial of Service (ReDoS)
#2202 opened Apr 27, 2023 by westonsteimel Loading…
[GHSA-rc2q-x9mf-w3vf] TestNG is vulnerable to Path Traversal
#2201 opened Apr 27, 2023 by ljacomet Loading…
[GHSA-6m9f-pj6w-w87g] Rancher Webhook is misconfigured during upgrade process
#2200 opened Apr 27, 2023 by pjbgf Loading…
2
[GHSA-29mw-wpgm-hmr9] Regular Expression Denial of Service (ReDoS) in lodash
#2198 opened Apr 26, 2023 by nitaiapiiro Loading…
[GHSA-vr8j-hgmm-jh9r] If an X.509 certificate contains a malformed policy...
#2190 opened Apr 24, 2023 by AlmogApiiro Loading…
[GHSA-6mqr-q86q-6gwr] Authentication Bypass by CSRF Weakness
#2188 opened Apr 24, 2023 by tdunlap607 Loading…
1
[GHSA-qcc4-3rxf-gf4m] Unauthorized property update in CheckboxGroup component in Vaadin 12-14 and 15-20
#2187 opened Apr 24, 2023 by tdunlap607 Loading…
[GHSA-qf9q-q4hh-qph3] SQL injection in blazer
#2186 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-q9h2-4xhf-23xx] Data races in im
#2185 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-q73f-vjc2-3gqf] OpenStack Image Service (Glance) allows remote authenticated users to read arbitrary file
#2184 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-q56r-mw39-944g] Concrete CMS vulnerable to Improper Authentication
#2183 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-mhp6-pxh8-r675] Cross site scripting in Angular
#2182 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-m69r-9g56-7mv8] HashiCorp Consul vulnerable to authorization bypass
#2181 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-jgm2-m5cg-f66g] Authentication Bypass in Apache Tomcat
#2180 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-j8p3-8m69-2hqq] CakePHP allows remote attackers to spoof their IP
#2179 opened Apr 23, 2023 by tdunlap607 Loading…
[GHSA-gvpx-9459-w3mj] Cross-Site Scripting in @ckeditor/ckeditor5-link
#2178 opened Apr 23, 2023 by tdunlap607 Loading…
ProTip! Mix and match filters to narrow down what you’re looking for.