issues
search
github
/
advisory-database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Creative Commons Attribution 4.0 International
1.7k
stars
314
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
[GHSA-qqcv-vg9f-5rr3] litellm vulnerable to improper access control in team management
#4565
krrishdholakia
closed
2 months ago
5
[GHSA-6269-grv3-jc94] An issue was discovered in the stripTags and unescapeHTML...
#4564
mcr-paulanand
closed
1 month ago
1
[GHSA-q24v-hpg3-v3jp] Reactor Netty HTTP Server denial of service vulnerability
#4563
mpihelgas
closed
2 months ago
1
[GHSA-8grg-q944-cch5] SQL Injection in Hibernate ORM
#4562
mpihelgas
closed
2 months ago
1
[GHSA-j8jw-g6fq-mp7h] SQL injection in hibernate-core
#4561
mpihelgas
closed
2 months ago
1
[GHSA-j628-q885-8gr5] Keycloak vulnerable to log Injection during WebAuthn authentication or registration
#4560
dhvakr
closed
2 months ago
2
[GHSA-jjfh-589g-3hjx] Spring Boot denial of service vulnerability
#4559
sealbenb
closed
2 months ago
1
[GHSA-ww39-953v-wcq6] glob-parent vulnerable to Regular Expression Denial of Service in enclosure regex
#4558
sealonohana
closed
2 months ago
4
[GHSA-ww39-953v-wcq6] glob-parent vulnerable to Regular Expression Denial of Service in enclosure regex
#4557
sealonohana
closed
2 months ago
0
[GHSA-xfhp-jf8p-mh5w] HashiCorp go-getter Vulnerable to Code Execution On Git Update Via Git Config Manipulation
#4556
Moradiii1987
closed
2 months ago
1
[GHSA-r3gr-cxrf-hg25] Serialization gadgets exploit in jackson-databind
#4555
mpihelgas
closed
2 months ago
1
[GHSA-758m-v56v-grj4] jackson-databind mishandles the interaction between serialization gadgets and typing
#4554
mpihelgas
closed
2 months ago
1
[GHSA-c265-37vj-cwcc] Deserialization of untrusted data in Jackson Databind
#4553
mpihelgas
closed
2 months ago
1
[GHSA-hj4r-2c9c-29h3] Elastic Beats inserts sensitive information into log file
#4552
levinebw
closed
2 months ago
5
[GHSA-m6q9-p373-g5q8] Keycloak's unvalidated cross-origin messages in checkLoginIframe leads to DDoS
#4551
dhvakr
closed
2 months ago
3
[GHSA-cchp-3rq6-69wj] events2 TYPO3 extension insecure direct object reference (IDOR) vulnerability
#4550
iusx
closed
2 months ago
2
GHSA-ghmj-crg5-xw2j/GHSA-ghmj-crg5-xw2j.json is missing aliases CVE-2020-7608
#4549
kurtseifried
closed
2 months ago
1
Missing advisories for npm packages from CVE-2024-4067
#4548
aarongoldenthal
closed
2 weeks ago
9
[GHSA-3h5v-q93c-6h6q] ws affected by a DoS when handling a request with many HTTP headers
#4547
GaganaDhanakoti
closed
2 months ago
2
[GHSA-ghv6-9r9j-wh4j] MLFlow unsafe deserialization
#4546
litios
closed
2 months ago
3
[GHSA-294q-5vvf-xj65] SQL Injection vulnerability in CRMEB v.5.2.2 allows a...
#4545
phtcloud-dev
closed
2 months ago
2
[GHSA-cr7j-rwmv-vgch] aimeos-core arbitrary file uopload vulnerability
#4544
aimeos
closed
2 months ago
4
[GHSA-6r4x-gvmf-4gw2] A vulnerability was found in GPAC 2.5-DEV-rev228...
#4543
hotcoding85
closed
2 months ago
1
[GHSA-m5vv-6r4h-3vj9] Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability
#4542
localden
closed
2 months ago
1
[GHSA-rf65-fc2p-2gjv] joblib v1.4.2 was discovered to contain a deserialization...
#4541
tomMoral
closed
2 months ago
1
[GHSA-3hjh-jh2h-vrg6] Denial of service in langchain
#4540
efriis
closed
2 months ago
3
[GHSA-3hjh-jh2h-vrg6] Denial of service in langchain
#4539
eyurtsev
closed
2 months ago
3
[GHSA-jv4x-j47q-6qvp] htmlcleaner vulnerable to stack exhaustion
#4538
onmyquest
closed
2 months ago
1
[GHSA-m5vv-6r4h-3vj9] Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability
#4537
localden
closed
2 months ago
4
[GHSA-m5vv-6r4h-3vj9] Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability
#4536
scottaddie
closed
2 months ago
1
[GHSA-23qq-p4gq-gc2g] WordOps has TOCTOU race condition
#4535
VirtuBox
closed
2 months ago
1
[GHSA-23qq-p4gq-gc2g] WordOps has TOCTOU race condition
#4534
VirtuBox
closed
2 months ago
0
lightning RCE is not fixed in 2.2.2
#4533
anderruiz
closed
1 month ago
1
[GHSA-qc99-g3wm-hgxr] Django Arbitrary Code Execution
#4532
MarkLee131
closed
2 months ago
1
[GHSA-mx3p-fhpw-x6rv] TCPDF vulnerable to Regular Expression Denial of Service
#4531
Starfox64
closed
2 months ago
1
[GHSA-7gj7-224w-vpr3] Thymeleaf, as used in Spring Boot Admin, allows sandbox bypass via crafted HTML
#4530
Subrhamanya
closed
2 months ago
11
[GHSA-g5h3-w546-pj7f] Spring Boot Security Bypass with Wildcard Pattern Matching on Cloud Foundry
#4529
namandf
closed
2 months ago
4
[GHSA-3hrr-xwvg-hxvr] Keycloak DoS via account lockout
#4528
codespearhead
closed
2 months ago
1
[GHSA-qg5r-95m4-mjgj] Reflected Cross-site Scripting in yiisoft/yii2 Debug mode
#4527
rob006
closed
2 months ago
2
[GHSA-cjcc-p67m-7qxm] Unsafe Reflection in base Component class in yiisoft/yii2
#4526
rob006
closed
2 months ago
2
[GHSA-25w4-hfqg-4r52] Quarkus: authorization flaw in quarkus resteasy reactive and classic
#4525
bschuhmann
closed
2 months ago
12
[GHSA-624g-8qjg-8qxf] Conform contains a Prototype Pollution Vulnerability in `parseWith...` function
#4524
vtsvetkov-splunk
closed
2 months ago
4
[GHSA-grv7-fg5c-xmjg] The NPM package `braces` fails to limit the number of...
#4523
AlmogApiiro
closed
2 months ago
1
[GHSA-2p57-rm9w-gvfp] ip SSRF improper categorization in isPublic
#4522
Tushar007079
closed
1 month ago
1
[GHSA-78xj-cgh5-2h22] NPM IP package incorrectly identifies some private IP addresses as public
#4521
murillonr
closed
2 months ago
1
[GHSA-wr3j-pwj9-hqq6] Path traversal in webpack-dev-middleware
#4520
murillonr
closed
1 month ago
2
[GHSA-2p57-rm9w-gvfp] ip SSRF improper categorization in isPublic
#4519
murillonr
closed
1 month ago
1
[GHSA-3x57-m5p4-rgh4] ZendOpenID potential security issue in login mechanism
#4518
Ybs187
closed
2 months ago
1
[GHSA-3x57-m5p4-rgh4] ZendOpenID potential security issue in login mechanism
#4517
flexibrah
closed
2 months ago
1
[GHSA-q25c-c977-4cmh] Server-Side Request Forgery in langchain
#4516
HikaruEgashira
closed
3 months ago
4
Previous
Next