issues
search
github
/
advisory-database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Creative Commons Attribution 4.0 International
1.75k
stars
336
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
[GHSA-jwvw-v7c5-m82h] protobuf susceptible to buffer overflow
#5038
BertsLifee
closed
1 hour ago
0
[GHSA-c392-whpc-vfpr] Apache Airflow vulnerable to Improper Encoding or Escaping of Output
#5037
exolightor
closed
11 hours ago
2
[GHSA-rhh4-rh7c-7r5v] Archiver Path Traversal vulnerability
#5036
byt3n33dl3
closed
1 day ago
0
[GHSA-xhg6-9j5j-w4vf] DotNetZip Directory Traversal vulnerability
#5035
Foorcee
closed
6 hours ago
1
[GHSA-w73r-8mm4-cfvf] Lunary Improper Authentication vulnerability
#5034
vincelwt
closed
10 hours ago
1
👋 hello hi ok yes
#5033
Gguyzaza
closed
11 hours ago
0
[GHSA-xq3w-v528-46rv] Denial of Service attack on windows app using netty
#5032
AB-xdev
opened
3 days ago
2
[GHSA-5jfw-gq64-q45f] HTML Cleaner allows crafted scripts in special contexts like svg or math to pass through
#5031
byt3n33dl3
opened
3 days ago
5
[GHSA-h27c-6xm3-mcqp] Kanister vulnerable to cluster-level privilege escalation
#5030
hairyhum
closed
3 days ago
5
CVE-2024-43403 (GHSA-h27c-6xm3-mcqp) is incorrectly published as affecting Go code
#5029
hairyhum
closed
5 hours ago
1
[GHSA-qvqm-h22r-4cp9] Laravel Framework RCE Vulnerability
#5028
mattberry3
opened
4 days ago
3
[GHSA-p2h2-3vg9-4p87] Connecting to a malicious Codespaces via GH CLI could allow command execution on the user's computer
#5027
dernorberto
closed
7 hours ago
4
Erroneous malware reports on appdynamics-* packages
#5026
laurie71
closed
5 days ago
3
[GHSA-45pg-36p6-83v9] Langchain SQL Injection vulnerability
#5025
liadlevy
closed
4 days ago
8
[GHSA-cm5g-3pgc-8rg4] A vulnerability has been identified in the Express...
#5024
axi92
closed
5 hours ago
8
[GHSA-7mgx-gvjw-m3w3] CrateDB authentication bypass vulnerability
#5023
proddata
closed
5 days ago
1
[GHSA-vxmc-5x29-h64v] A security vulnerability has been discovered in bootstrap...
#5022
hdtmccallie
closed
1 week ago
1
[GHSA-3xgq-45jj-v275] Regular Expression Denial of Service (ReDoS) in cross-spawn
#5021
G-Rath
closed
1 week ago
1
[GHSA-6x36-qxmj-rv4p] .NET Denial of Service Vulnerability
#5020
matt-phylum
opened
1 week ago
3
[GHSA-v7vf-f5q6-m899] .NET Remote Code Execution Vulnerability
#5019
matt-phylum
closed
5 days ago
9
[GHSA-hxx2-7vcw-mqr3] Sinatra vulnerable to Reliance on Untrusted Inputs in a Security Decision
#5018
ThomasKoppensteiner
closed
1 week ago
1
[GHSA-xhg6-9j5j-w4vf] DotNetZip Directory Traversal vulnerability
#5017
Foorcee
closed
1 week ago
1
[GHSA-c7qv-q95q-8v27] Denial of service in http-proxy-middleware
#5016
dulay4209
closed
1 week ago
0
[GHSA-q25j-gcmv-5qpp] Moderate severity vulnerability that affects org.grails.plugins:fields and org.grails:grails-core
#5015
martinfrancois
closed
1 week ago
1
[GHSA-7q7g-4xm8-89cq] Regular Expression Denial of Service (ReDoS) in @eslint/plugin-kit
#5014
MikuroXina
closed
1 week ago
5
[GHSA-3xgq-45jj-v275] Versions of the package cross-spawn before 7.0.5 are...
#5013
rozeskjm
closed
1 week ago
1
[GHSA-9qv8-7jfq-73j2] Open redirect vulnerability in Jenkins OpenId Connect Authentication Plugin
#5012
westonsteimel
closed
1 week ago
1
[GHSA-6r5w-jjr5-qvgr] Password stored in a recoverable format by Jenkins OpenId Connect Authentication Plugin
#5011
westonsteimel
closed
1 week ago
1
[GHSA-8p5q-j9m2-g8wr] Withdrawn: Arbitrary code execution in lodash
#5010
t-vorobyova
closed
6 days ago
3
[GHSA-3mwc-2cj7-gx8c] lunary-ai/lunary Access Control Vulnerability in Prompt Variation Management
#5009
vincelwt
closed
1 week ago
4
[GHSA-w5xm-mx47-v7c8] lunary-ai/lunary allows users unauthorized access to projects
#5008
vincelwt
closed
1 week ago
1
[GHSA-cg23-qf8f-62rr] Symphony has an Authentication Bypass via RememberMe
#5007
stof
closed
1 week ago
2
[GHSA-m2qf-hxjv-5gpq] Flask vulnerable to possible disclosure of permanent session cookie due to missing Vary: Cookie header
#5006
RFOF-NETWORK
closed
1 week ago
3
[GHSA-45pg-36p6-83v9] Langchain SQL Injection vulnerability
#5005
efriis
closed
1 week ago
1
[GHSA-pppg-cpfq-h7wr] JSONPath Plus Remote Code Execution (RCE) Vulnerability
#5003
jdong10
closed
1 week ago
1
[GHSA-vrmr-f2qh-3hhf] Improper use of cryptographic key in wal-g
#5002
andrewpollock
closed
1 week ago
2
[GHSA-mwwc-3jv2-62j3] AdGuardHome vulnerable to Cross-Site Request Forgery
#5001
andrewpollock
closed
1 week ago
2
[GHSA-9224-ggvw-wh7v] VM images built with Image Builder and Proxmox provider use default credentials in github.com/kubernetes-sigs/image-builder
#5000
akaday
closed
1 week ago
0
[GHSA-5vx5-9q73-wgp4] Safemode Gem Has Incomplete List of Disallowed Inputs
#4999
MarcoB1090
closed
1 week ago
1
[GHSA-j9m2-h2pv-wvph] Regular expression denial of service in jquery-validation
#4998
amita-seal
closed
1 week ago
2
[GHSA-378w-3fqw-3555] Multiple cross-site scripting (XSS) vulnerabilities in...
#4997
mwinters0
closed
1 week ago
1
[GHSA-779h-3r69-4f5p] json-io vulnerable to stack exhaustion
#4996
aantonel-sysdig
closed
2 weeks ago
2
[GHSA-4hxw-gc2q-f6f3] Filament has exported files stored in default (`public`) filesystem if not reconfigured
#4995
danharrin
closed
2 weeks ago
2
[GHSA-3hxg-fxwm-8gf7] CRLF injection in Refit's [Header], [HeaderCollection] and [Authorize] attributes
#4994
glennawatson
closed
2 weeks ago
3
[GHSA-2234-fmw7-43wr] Hano allows bypass of CSRF Middleware by a request without Content-Type header.
#4993
MathurAditya724
closed
2 weeks ago
2
[GHSA-8h5w-f6q9-wg35] Langchain SQL Injection vulnerability
#4992
bertuxdeveloper
closed
2 weeks ago
1
[GHSA-jjxq-ff2g-95vh] Twig has unguarded calls to `__isset()` and to array-accesses when the sandbox is enabled
#4991
G-Rath
closed
2 weeks ago
3
[GHSA-rc7v-65v6-m2v3] go-mysql affected by go.uuid's Predictable UUID Identifiers
#4990
Fidget-Grep
closed
2 weeks ago
4
`GHSA-7wx3-vr2f-6p29` contains invalid CVSS v4
#4989
jobselko
closed
2 weeks ago
2
[GHSA-3q4w-rf2j-fx5x] Observable Response Discrepancy vulnerability in HumHub...
#4988
kaerez
opened
2 weeks ago
2
Next