The Wayback Machine - https://web.archive.org/web/20240903182201/https://github.com/github/advisory-database/pulls
Skip to content

Pull requests: github/advisory-database

New pull request New
14 Open 4,372 Closed
14 Open 4,372 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

[GHSA-ghg6-32f9-2jp7] XXE in PHPSpreadsheet encoding is returned
#4746 opened Aug 31, 2024 by KODIKAS-SERVER Loading…
3
[GHSA-x768-cvr2-345r] Un-sanitized metric name or labels can be used to take over exported metrics
#4745 opened Aug 31, 2024 by ShineZaw123 Loading…
2
[GHSA-45rp-q25w-4426] pretix Stored Cross-site Scripting vulnerability
#4742 opened Aug 29, 2024 by p-w Loading…
1
[GHSA-fwhr-88qx-h9g7] Missing security headers in Action Pack on non-HTML responses
#4720 opened Aug 24, 2024 by rahg0 Loading…
4
[GHSA-rv9v-r4vm-gj8x] Miniscript allows stack consumption
#4719 opened Aug 23, 2024 by apoelstra Loading…
3
[GHSA-f6fj-c8gc-64v6] A vulnerability has been found in automad up to 1.10.9...
#4704 opened Aug 17, 2024 by marcantondahmen Loading…
1
[GHSA-876p-c77m-x2hc] Prototype pollution in ag-grid-community via the _.mergeDeep function
#4698 opened Aug 16, 2024 by tariqhawis Loading…
3
[GHSA-x4wf-678h-2pmq] Keras code injection vulnerability Stale
#4650 opened Aug 2, 2024 by Qubayl90 Loading…
2
[GHSA-jj45-24rw-v6jw] Cross-site scripting in TotalJS Stale
#4647 opened Aug 2, 2024 by edoardottt Loading…
4
[GHSA-6c4g-j5rf-mc73] A cross-site scripting (XSS) vulnerability in TotalJS... Stale
#4646 opened Aug 2, 2024 by edoardottt Loading…
4
[GHSA-9v2f-6vcg-3hgv] Gradio was discovered to contain a code injection vulnerability via the component /gradio/component_meta.py
#4622 opened Jul 19, 2024 by kmulka-bloomberg Loading…
4
[GHSA-2p57-rm9w-gvfp] ip SSRF improper categorization in isPublic Stale
#4619 opened Jul 18, 2024 by ThisIsMissEm Loading…
9
Improve GHSA-5xrr-fw23-8wgc Stale
#4618 opened Jul 18, 2024 by Shepherd36 Loading…
2
[GHSA-7fh5-64p2-3v2j] PostCSS line return parsing error Stale
#4617 opened Jul 18, 2024 by Shepherd36 Loading…
2
ProTip! Exclude everything labeled bug with -label:bug.