issues
search
github
/
advisory-database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Creative Commons Attribution 4.0 International
1.66k
stars
304
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
[GHSA-22wj-vf5f-wrvj] Password exposure in H2 Database
#4575
amita-seal
opened
17 minutes ago
0
[GHSA-5rg9-mjfx-pqq5] ArcGIS Enterprise Server 10.8.0 allows a remote attacker...
#4574
RandallWilliams
opened
25 minutes ago
0
[GHSA-pgj4-g5j4-cmfx] cart2quote/module-quotation-encoded Remote Code Execution via downloadCustomOptionAction
#4573
fpurser
opened
1 hour ago
0
[GHSA-gqm2-2gcx-p88w] Incorrect Permission Assignment for Critical Resource in Jenkins Credentials Binding Plugin
#4572
secjoker
closed
52 minutes ago
1
[GHSA-3h5v-q93c-6h6q] ws affected by a DoS when handling a request with many HTTP headers
#4571
patmmccann
closed
23 hours ago
2
[GHSA-cf3q-vg8w-mw84] Use of Cryptographically Weak Pseudo-Random Number...
#4570
oscerd
closed
1 day ago
1
[GHSA-hg58-rf2h-6rr7] CometBFT is unstability during blocksync when syncing from malicious peer
#4569
AHMED11178
opened
3 days ago
2
[GHSA-4mgv-m5cm-f9h7] Vault GitHub Action did not correctly mask multi-line secrets in output
#4568
GAEAlimited
opened
3 days ago
1
[GHSA-c25h-c27q-5qpv] Keycloak leaks configured LDAP bind credentials through the Keycloak admin console
#4567
MarkLee131
closed
2 days ago
2
[GHSA-qqcv-vg9f-5rr3] litellm vulnerable to improper access control in team management
#4566
byt3bl33d3r
closed
4 days ago
1
[GHSA-qqcv-vg9f-5rr3] litellm vulnerable to improper access control in team management
#4565
krrishdholakia
closed
4 days ago
5
[GHSA-6269-grv3-jc94] An issue was discovered in the stripTags and unescapeHTML...
#4564
mcr-paulanand
opened
5 days ago
1
[GHSA-q24v-hpg3-v3jp] Reactor Netty HTTP Server denial of service vulnerability
#4563
mpihelgas
closed
5 days ago
1
[GHSA-8grg-q944-cch5] SQL Injection in Hibernate ORM
#4562
mpihelgas
closed
5 days ago
1
[GHSA-j8jw-g6fq-mp7h] SQL injection in hibernate-core
#4561
mpihelgas
closed
5 days ago
1
[GHSA-j628-q885-8gr5] Keycloak vulnerable to log Injection during WebAuthn authentication or registration
#4560
dhvakr
closed
5 days ago
2
[GHSA-jjfh-589g-3hjx] Spring Boot denial of service vulnerability
#4559
sealbenb
closed
5 days ago
1
[GHSA-ww39-953v-wcq6] glob-parent vulnerable to Regular Expression Denial of Service in enclosure regex
#4558
sealonohana
closed
6 days ago
4
[GHSA-ww39-953v-wcq6] glob-parent vulnerable to Regular Expression Denial of Service in enclosure regex
#4557
sealonohana
closed
1 week ago
0
[GHSA-xfhp-jf8p-mh5w] HashiCorp go-getter Vulnerable to Code Execution On Git Update Via Git Config Manipulation
#4556
Moradiii1987
closed
6 days ago
1
[GHSA-r3gr-cxrf-hg25] Serialization gadgets exploit in jackson-databind
#4555
mpihelgas
closed
1 week ago
1
[GHSA-758m-v56v-grj4] jackson-databind mishandles the interaction between serialization gadgets and typing
#4554
mpihelgas
closed
1 week ago
1
[GHSA-c265-37vj-cwcc] Deserialization of untrusted data in Jackson Databind
#4553
mpihelgas
closed
1 week ago
1
[GHSA-hj4r-2c9c-29h3] Elastic Beats inserts sensitive information into log file
#4552
levinebw
closed
1 week ago
5
[GHSA-m6q9-p373-g5q8] Keycloak's unvalidated cross-origin messages in checkLoginIframe leads to DDoS
#4551
dhvakr
closed
1 week ago
3
[GHSA-cchp-3rq6-69wj] events2 TYPO3 extension insecure direct object reference (IDOR) vulnerability
#4550
iepn
closed
1 week ago
2
GHSA-ghmj-crg5-xw2j/GHSA-ghmj-crg5-xw2j.json is missing aliases CVE-2020-7608
#4549
kurtseifried
closed
6 days ago
1
Missing advisories for npm packages from CVE-2024-4067
#4548
aarongoldenthal
opened
1 week ago
1
[GHSA-3h5v-q93c-6h6q] ws affected by a DoS when handling a request with many HTTP headers
#4547
GaganaDhanakoti
closed
1 week ago
2
[GHSA-ghv6-9r9j-wh4j] MLFlow unsafe deserialization
#4546
litios
closed
1 week ago
3
[GHSA-294q-5vvf-xj65] SQL Injection vulnerability in CRMEB v.5.2.2 allows a...
#4545
phtcloud-dev
closed
1 week ago
2
[GHSA-cr7j-rwmv-vgch] aimeos-core arbitrary file uopload vulnerability
#4544
aimeos
closed
1 week ago
4
[GHSA-6r4x-gvmf-4gw2] A vulnerability was found in GPAC 2.5-DEV-rev228...
#4543
hotcoding85
closed
1 week ago
1
[GHSA-m5vv-6r4h-3vj9] Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability
#4542
localden
closed
1 week ago
1
[GHSA-rf65-fc2p-2gjv] joblib v1.4.2 was discovered to contain a deserialization...
#4541
tomMoral
closed
18 hours ago
1
[GHSA-3hjh-jh2h-vrg6] Denial of service in langchain
#4540
efriis
closed
2 weeks ago
3
[GHSA-3hjh-jh2h-vrg6] Denial of service in langchain
#4539
eyurtsev
closed
2 weeks ago
3
[GHSA-jv4x-j47q-6qvp] htmlcleaner vulnerable to stack exhaustion
#4538
onmyquest
closed
2 weeks ago
1
[GHSA-m5vv-6r4h-3vj9] Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability
#4537
localden
closed
2 weeks ago
4
[GHSA-m5vv-6r4h-3vj9] Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability
#4536
scottaddie
closed
2 weeks ago
1
[GHSA-23qq-p4gq-gc2g] WordOps has TOCTOU race condition
#4535
VirtuBox
closed
2 weeks ago
1
[GHSA-23qq-p4gq-gc2g] WordOps has TOCTOU race condition
#4534
VirtuBox
closed
3 weeks ago
0
lightning RCE is not fixed in 2.2.2
#4533
anderruiz
opened
3 weeks ago
1
[GHSA-qc99-g3wm-hgxr] Django Arbitrary Code Execution
#4532
MarkLee131
closed
2 weeks ago
1
[GHSA-mx3p-fhpw-x6rv] TCPDF vulnerable to Regular Expression Denial of Service
#4531
Starfox64
closed
3 weeks ago
1
[GHSA-7gj7-224w-vpr3] Thymeleaf, as used in Spring Boot Admin, allows sandbox bypass via crafted HTML
#4530
Subrhamanya
closed
2 weeks ago
11
[GHSA-g5h3-w546-pj7f] Spring Boot Security Bypass with Wildcard Pattern Matching on Cloud Foundry
#4529
namandf
opened
3 weeks ago
3
[GHSA-3hrr-xwvg-hxvr] Keycloak DoS via account lockout
#4528
codespearhead
closed
3 weeks ago
1
[GHSA-qg5r-95m4-mjgj] Reflected Cross-site Scripting in yiisoft/yii2 Debug mode
#4527
rob006
opened
3 weeks ago
1
[GHSA-cjcc-p67m-7qxm] Unsafe Reflection in base Component class in yiisoft/yii2
#4526
rob006
opened
3 weeks ago
1
Next