issues
search
github
/
advisory-database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Creative Commons Attribution 4.0 International
1.67k
stars
304
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
[GHSA-qc99-g3wm-hgxr] Django Arbitrary Code Execution
#4532
MarkLee131
closed
3 weeks ago
1
[GHSA-mx3p-fhpw-x6rv] TCPDF vulnerable to Regular Expression Denial of Service
#4531
Starfox64
closed
3 weeks ago
1
[GHSA-7gj7-224w-vpr3] Thymeleaf, as used in Spring Boot Admin, allows sandbox bypass via crafted HTML
#4530
Subrhamanya
closed
3 weeks ago
11
[GHSA-g5h3-w546-pj7f] Spring Boot Security Bypass with Wildcard Pattern Matching on Cloud Foundry
#4529
namandf
opened
3 weeks ago
3
[GHSA-3hrr-xwvg-hxvr] Keycloak DoS via account lockout
#4528
codespearhead
closed
3 weeks ago
1
[GHSA-qg5r-95m4-mjgj] Reflected Cross-site Scripting in yiisoft/yii2 Debug mode
#4527
rob006
opened
3 weeks ago
1
[GHSA-cjcc-p67m-7qxm] Unsafe Reflection in base Component class in yiisoft/yii2
#4526
rob006
opened
3 weeks ago
1
[GHSA-25w4-hfqg-4r52] Quarkus: authorization flaw in quarkus resteasy reactive and classic
#4525
bschuhmann
closed
3 weeks ago
12
[GHSA-624g-8qjg-8qxf] Conform contains a Prototype Pollution Vulnerability in `parseWith...` function
#4524
vtsvetkov-splunk
closed
3 weeks ago
4
[GHSA-grv7-fg5c-xmjg] The NPM package `braces` fails to limit the number of...
#4523
AlmogApiiro
closed
3 weeks ago
1
[GHSA-2p57-rm9w-gvfp] ip SSRF improper categorization in isPublic
#4522
Tushar007079
opened
3 weeks ago
1
[GHSA-78xj-cgh5-2h22] NPM IP package incorrectly identifies some private IP addresses as public
#4521
murillonr
closed
1 week ago
1
[GHSA-wr3j-pwj9-hqq6] Path traversal in webpack-dev-middleware
#4520
murillonr
opened
3 weeks ago
2
[GHSA-2p57-rm9w-gvfp] ip SSRF improper categorization in isPublic
#4519
murillonr
opened
3 weeks ago
1
[GHSA-3x57-m5p4-rgh4] ZendOpenID potential security issue in login mechanism
#4518
Ybs187
opened
3 weeks ago
1
[GHSA-3x57-m5p4-rgh4] ZendOpenID potential security issue in login mechanism
#4517
flexibrah
opened
3 weeks ago
1
[GHSA-q25c-c977-4cmh] Server-Side Request Forgery in langchain
#4516
HikaruEgashira
closed
4 weeks ago
4
[GHSA-m4pq-fv2w-6hrw] Deno's deno_runtime vulnerable to interactive permission prompt spoofing via improper ANSI stripping
#4515
westonsteimel
closed
3 weeks ago
9
[GHSA-hxgx-584x-vwm8] Appwrite Server-Side Request Forgery vulnerability
#4514
abnegate
opened
4 weeks ago
1
[GHSA-hvh4-5qr6-3v7r] Observable Timing Discrepancy in pypqc
#4513
JamesTheAwesomeDude
closed
1 month ago
5
[GHSA-c74f-6mfw-mm4v] Denial of service via Compressed HTTP Bomb
#4512
arminru
closed
1 month ago
2
[GHSA-hrmr-f5m6-m9pq] Moderate severity vulnerability that affects org.apache.commons:commons-compress
#4511
SunBK201
closed
1 month ago
1
[GHSA-ffvq-7w96-97p7] Denial of Service in Spring Framework
#4510
SunBK201
closed
1 month ago
1
[GHSA-xjrf-8x4f-43h4] Improper Neutralization of Input During Web Page Generation in Spring Framework
#4509
SunBK201
closed
1 month ago
1
[GHSA-m5hf-m3r2-xq53] hutool-core was discovered to contain a stack overflow via NumberUtil.toBigDecimal method
#4508
SunBK201
closed
1 month ago
1
[GHSA-7m7h-rgvp-3v4r] hutool-core discovered to contain an infinite loop in the StrSplitter.splitByRegex function
#4507
SunBK201
closed
1 month ago
1
[GHSA-p66x-2cv9-qq3v] Arbitrary code execution in Apache Commons BeanUtils
#4506
SunBK201
closed
1 month ago
2
[GHSA-qmx3-m648-hr74] Log Injection in Apache Sling Commons Log and Apache Sling API
#4505
SunBK201
opened
1 month ago
1
[GHSA-q62h-jw38-24vh] Uncaught Exception in zip4j
#4504
SunBK201
opened
1 month ago
1
[GHSA-3mcp-9wr4-cjqf] Remote Code Execution (RCE) vulnerability in dropwizard-validation
#4503
SunBK201
closed
1 month ago
2
[GHSA-8vhq-qq4p-grq3] OS Command Injection in Plexus-utils
#4502
SunBK201
opened
1 month ago
1
[GHSA-wx54-3278-m5g4] Integer overflow in BCrypt class in Spring Security
#4501
SunBK201
closed
4 weeks ago
4
[GHSA-6phf-73q6-gh87] Insecure Deserialization in Apache Commons Beanutils
#4500
SunBK201
opened
1 month ago
1
[GHSA-rgv9-q543-rqg4] Uncontrolled Resource Consumption in FasterXML jackson-databind
#4499
SunBK201
opened
1 month ago
1
[GHSA-cqqj-4p63-rrmm] HTTP Request Smuggling in Netty
#4498
SunBK201
opened
1 month ago
1
.
#4497
KhaledAshrafH
closed
1 month ago
1
[GHSA-wx5j-54mm-rqqq] HTTP request smuggling in netty
#4496
SunBK201
opened
1 month ago
2
[GHSA-7x9j-7223-rg5m] Improper Access Control in commons-fileupload
#4495
SunBK201
closed
1 month ago
1
[GHSA-qxxx-2pp7-5hmx] jackson-databind is vulnerable to a deserialization flaw
#4494
SunBK201
opened
1 month ago
1
[GHSA-cfm4-qjh2-4765] Improper Verification of Cryptographic Signature in node-forge
#4493
TiagoBernardoSantos
closed
1 month ago
2
[GHSA-2p57-rm9w-gvfp] ip SSRF improper categorization in isPublic
#4492
ShreyaCtrl
closed
1 month ago
0
[GHSA-2p57-rm9w-gvfp] ip SSRF improper categorization in isPublic
#4491
KhaledAshrafH
closed
1 month ago
1
[GHSA-2p57-rm9w-gvfp] ip SSRF improper categorization in isPublic
#4490
Serenablack
closed
1 month ago
1
[GHSA-2p57-rm9w-gvfp] ip SSRF improper categorization in isPublic
#4489
tomegantcs
closed
1 month ago
3
[GHSA-c5q2-7r4c-mv6g] Go JOSE vulnerable to Improper Handling of Highly Compressed Data (Data Amplification)
#4488
vrv7567
closed
1 month ago
3
[GHSA-6hr9-4692-fch9] OS Command Injection in effect
#4487
Fidget-Grep
closed
1 month ago
1
[GHSA-qg5r-95m4-mjgj] Reflected Cross-site Scripting in yiisoft/yii2 Debug mode
#4486
iBotPeaches
closed
1 month ago
2
[GHSA-cjcc-p67m-7qxm] Unsafe Reflection in base Component class in yiisoft/yii2
#4485
iBotPeaches
closed
1 month ago
2
[GHSA-f3jh-qvm4-mg39] Erroneous authentication pass in Spring Security
#4484
SunBK201
closed
1 month ago
1
False positive for quarkus-core 3.8.4 vulnerability
#4483
khaledgithubwl
opened
1 month ago
2
Previous
Next