github / advisory-database Public

Notifications You must be signed in to change notification settings
Fork 456
Star 1.9k

Code
Issues 70
Pull requests 14
Discussions
Actions
Models
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Models
Security
Insights

Pull requests: github/advisory-database

Labels 15 Milestones 0

New pull request New

14 Open 5,493 Closed

Author

Filter by author

Uh oh!

There was an error while loading. Please reload this page.

Label

Filter by label

Uh oh!

There was an error while loading. Please reload this page.

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Uh oh!

There was an error while loading. Please reload this page.

Milestones

Filter by milestone

Uh oh!

There was an error while loading. Please reload this page.

Reviews

Filter by reviews

No reviews Review required Approved review Changes requested

Assignee

Filter by who’s assigned

Assigned to nobody

Uh oh!

There was an error while loading. Please reload this page.

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated Best match

Most reactions

Pull requests list

[GHSA-q4rv-gq96-w7c5] **UNSUPPORTED WHEN ASSIGNED** GzipHandler causes part of request body to be seen as request body of a separate request

#6047 opened Aug 26, 2025 by yeikel

Loading…

[GHSA-hp87-p4gw-j4gq] gopkg.in/yaml.v3 Denial of Service

#6046 opened Aug 26, 2025 by n-bes

Loading…

[GHSA-6h5x-7c5m-7cr7] Exposure of Sensitive Information in eventsource

#6045 opened Aug 26, 2025 by Stonefox36

Loading…

[GHSA-ff77-26x5-69cr] Apache Tomcat Rewrite rule bypass

#6044 opened Aug 25, 2025 by tjog

Loading…

[GHSA-8hmm-4crw-vm2c] @musistudio/claude-code-router has improper CORS configuration

#6043 opened Aug 25, 2025 by FERASMANASEER

Loading…

[GHSA-hpqf-m68j-2pfx] js-object-utilities Vulnerable to Prototype Pollution

#6041 opened Aug 21, 2025 by nkhayet

Loading…

[GHSA-3c93-92r7-j934] Grafana Infinity Datasource Plugin SSRF Vulnerability

#6029 opened Aug 19, 2025 by DanCech

Loading…

[GHSA-w2cq-g8g3-gm83] content-security-policy-parser Prototype Pollution Vulnerability May Lead to RCE

#6026 opened Aug 19, 2025 by byt3n33dl3

Loading…

[GHSA-q355-h244-969h] Komari vulnerable to Cross-site WebSocket Hijacking

#6021 opened Aug 17, 2025 by byt3n33dl3

Loading…

[GHSA-xh69-987w-hrp8] resolv vulnerable to DoS via insufficient DNS domain name length validation

#6019 opened Aug 15, 2025 by manunio

Loading…

[GHSA-859w-5945-r5v3] Vite's server.fs.deny bypassed with /. for files under project root

#6018 opened Aug 15, 2025 by Ecg-creator • Draft

[GHSA-6v2p-p543-phr9] golang.org/x/oauth2 Improper Validation of Syntactic Correctness of Input vulnerability

#5995 opened Aug 13, 2025 by jchax

Loading…

[GHSA-34rf-485x-g5h7] Arbitrary Command Injection in Kubernetes Headlamp via macOS Process codeSign Stale

#5802 opened Jul 11, 2025 by opsysdebug

Loading…

[GHSA-9pp5-9c7g-4r83] Spring Security authorization bypass for method security annotations on private methods Keep

#5747 opened Jun 24, 2025 by tomabai

Loading…

ProTip! Mix and match filters to narrow down what you’re looking for.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Uh oh!