issues
search
github
/
advisory-database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Creative Commons Attribution 4.0 International
1.68k
stars
312
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
[GHSA-cjcc-p67m-7qxm] Unsafe Reflection in base Component class in yiisoft/yii2
#4485
iBotPeaches
closed
1 month ago
2
[GHSA-f3jh-qvm4-mg39] Erroneous authentication pass in Spring Security
#4484
SunBK201
closed
1 month ago
1
False positive for quarkus-core 3.8.4 vulnerability
#4483
khaledgithubwl
opened
1 month ago
2
[GHSA-qjqp-xr96-cj99] Trix Editor Arbitrary Code Execution Vulnerability
#4482
chadlwilson
closed
1 month ago
5
[GHSA-8hqg-whrw-pv92] Ollama does not validate the format of the digest (sha256 with 64 hex digits)
#4481
lukas-braune
closed
1 month ago
1
[GHSA-rgx7-8wqv-m224] ThreeTen Backport v1.6.8 was discovered to contain an...
#4480
dubek
closed
1 month ago
2
[GHSA-68wg-qv6r-j4vp] SQL Injection in usmanhalalit/pixie
#4479
gitworkflows
closed
1 month ago
0
Update GHSA-rx7p-m6c3-777g.json
#4478
gitworkflows
closed
1 month ago
0
[GHSA-6wvf-f2vw-3425] github.com/containers/image allows unexpected authenticated registry accesses
#4477
RTann
closed
1 month ago
1
[GHSA-c5q2-7r4c-mv6g]: add missing package to the list of affected packages
#4476
hectorj2f
closed
1 month ago
1
[GHSA-922h-x9qv-2274] Jenkins PegDown Formatter Plugin has Cross-site Scripting vulnerability
#4475
secjoker
closed
1 month ago
1
[GHSA-g6h2-4x64-c59x] Improper Restriction of XML External Entity Reference Jenkins Token Macro Plugin
#4474
secjoker
closed
1 month ago
1
[GHSA-q5wm-qgxj-h9ph] Missing permission check in Jenkins Kmap Plugin allow SSRF
#4473
secjoker
closed
2 weeks ago
1
[GHSA-fvcf-wgxj-h7ch] CSRF vulnerability in Jenkins Nomad Plugin allow SSRF
#4472
secjoker
closed
2 weeks ago
1
[GHSA-wpfc-r5qq-7r7p] Jenkins NeuVector Vulnerability Scanner Plugin Cross-Site Request Forgery vulnerability
#4471
secjoker
closed
1 month ago
1
[GHSA-ph87-4x2g-6hp4] Jenkins NeuVector Vulnerability Scanner Plugin missing permission check
#4470
secjoker
closed
1 month ago
1
Not Showing five CVEs of GIt
#4469
spawar-apex
closed
3 weeks ago
1
[GHSA-9wx4-h78v-vm56] Requests `Session` object does not verify requests after making first request with verify=False
#4468
astellingwerf
closed
1 month ago
4
[GHSA-3965-hpx2-q597] Pug allows JavaScript code execution if an application accepts untrusted input
#4467
davidrunger
closed
1 month ago
1
[GHSA-3jvv-r7g7-63qp] Cross-site scripting (XSS) vulnerability in SourceBans...
#4466
epicosy
closed
3 weeks ago
2
[GHSA-fvrh-wrpf-6q7h] A stored cross-site scripting (XSS) vulnerability in the...
#4465
giuscris
closed
1 month ago
1
[GHSA-8pfj-w89w-m24x] Add affected product org.apache.zeppelin:zeppel…
#4464
raboof
closed
1 month ago
6
[GHSA-86jx-wr74-xr74] Add affected product org.apache.zeppelin:zeppel…
#4463
raboof
closed
2 months ago
4
Improve GHSA-4grx-2x9w-596c
#4462
myHerbDev
closed
2 weeks ago
1
[GHSA-4grx-2x9w-596c] Marvin Attack: potential key recovery through timing sidechannels
#4461
myHerbDev
closed
2 weeks ago
1
[GHSA-mwv2-398h-v489] Django Improper Access Control
#4460
MarkLee131
closed
2 months ago
1
[GHSA-g5h3-w546-pj7f] Spring Boot Security Bypass with Wildcard Pattern Matching on Cloud Foundry
#4459
quinzhi
closed
2 months ago
4
[GHSA-77r5-gw3j-2mpf] Next.js Vulnerable to HTTP Request Smuggling
#4458
myHerbDev
closed
2 weeks ago
7
[GHSA-64x4-9hc6-r2h6] Microsoft: CBC Padding Oracle in Azure Blob Storage Encryption Library
#4457
andrewpollock
closed
2 months ago
2
[GHSA-7jg2-jgv3-fmr4] The PDF viewer does not sufficiently sanitize PostScript...
#4456
Rob--W
closed
1 month ago
14
[GHSA-jj54-5q2m-q7pj] NATS server TLS missing ciphersuite settings when CLI flags used
#4455
lukas-braune
closed
2 months ago
2
[GHSA-9v8h-57gv-qch6] Django vulnerable to Denial of Service via i18n middleware component
#4454
MarkLee131
closed
2 months ago
1
[GHSA-54qj-48vx-cr9f] Django Cross-site scripting (XSS) vulnerability
#4453
MarkLee131
closed
2 months ago
1
[GHSA-r5cj-wv24-92p5] Django cross-site request forgery (CSRF) vulnerability
#4452
MarkLee131
closed
2 months ago
1
[GHSA-794h-2c6j-qp4q] SQL injection vulnerability in rating.php in New 5 star...
#4451
MarkLee131
closed
3 weeks ago
3
[GHSA-fwr5-q9rx-294f] Moderate severity vulnerability that affects django
#4450
MarkLee131
closed
2 months ago
1
[GHSA-7wph-fc4w-wqp2] Moderate severity vulnerability that affects django
#4449
MarkLee131
closed
2 months ago
1
[GHSA-364c-vvqx-446c] Croc sender may place ANSI or CSI escape sequences in filename to attach receiver's terminal device
#4448
schollz
closed
2 months ago
1
[GHSA-ppjh-xp5v-46wc] Croc sender may send dangerous new files to receiver
#4447
schollz
closed
2 months ago
1
[GHSA-8c8w-f7wp-2jr2] Sender can cause a receiver to overwrite files during ZIP extraction in Croc
#4446
schollz
closed
2 months ago
1
[GHSA-7mp6-929p-pqhj] Croc requires senders to provide local IP addresses in cleartext
#4445
schollz
closed
2 months ago
1
[GHSA-hp56-xvf4-g6wr] Cros secrets may be disclosed to untrusted relay
#4444
schollz
closed
2 months ago
1
[GHSA-7g3v-4ggr-xvjf] Croc may expose secret to local users
#4443
schollz
closed
2 months ago
1
[GHSA-9324-jv53-9cc8] dio vulnerable to CRLF injection with HTTP method string
#4442
hamde33
closed
2 months ago
5
[GHSA-rc6h-qwj9-2c53] Apache DolphinScheduler vulnerable to arbitrary JavaScript execution as root for authenticated users
#4441
westonsteimel
closed
2 months ago
1
nuget: different package names fo same packages
#4440
DmitriyLewen
opened
2 months ago
0
Incorrect security adivsory credit count
#4439
JafarAkhondali
closed
1 month ago
1
[GHSA-45vm-3j38-7p78] PrestaShop cross-site scripting via customer contact form in FO, through file upload
#4438
aelmokhtar
closed
2 months ago
2
GHSA-c2vj-fxvp-674h: add DSA number to aliases
#4437
tomodachi94
closed
2 months ago
0
[GHSA-r3w4-36x6-7r99] Nokogiri updates packaged libxml2 to v2.12.7 to resolve CVE-2024-34459
#4436
postmodern
closed
2 months ago
1
Previous
Next