github / advisory-database Public

Notifications You must be signed in to change notification settings
Fork 547
Star 2.2k

Code
Issues 67
Pull requests 13
Discussions
Actions
Models
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Models
Security
Insights

Pull requests: github/advisory-database

Labels 15 Milestones 0

New pull request New

13 Open 6,352 Closed

Author

Filter by author

Uh oh!

There was an error while loading. Please reload this page.

Label

Filter by label

Uh oh!

There was an error while loading. Please reload this page.

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Uh oh!

There was an error while loading. Please reload this page.

Milestones

Filter by milestone

Uh oh!

There was an error while loading. Please reload this page.

Reviews

Filter by reviews

No reviews Review required Approved review Changes requested

Assignee

Filter by who’s assigned

Assigned to nobody

Uh oh!

There was an error while loading. Please reload this page.

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated Best match

Most reactions

Pull requests list

[GHSA-rvv3-g6hj-g44x] AutoMapper Vulnerable to Denial of Service (DoS) via Uncontrolled Recursion

#7192 opened Mar 18, 2026 by noncommunicado

Loading…

[GHSA-fg6f-75jq-6523] Authlib has 1-click Account Takeover vulnerability

#7191 opened Mar 18, 2026 by levpachmanov

Loading…

[GHSA-wp52-r2fp-4vmr] Add reference and discoverer credits

#7190 opened Mar 18, 2026 by mariopepe

Loading…

[GHSA-87r5-mp6g-5w5j] jsonpath has Arbitrary Code Injection via Unsafe Evaluation of JSON Path Expressions

#7188 opened Mar 17, 2026 by skoilakonda

Loading…

updarte kristenrtr from main

#7187 opened Mar 17, 2026 by kristentr

Loading…

merge commit update

#7186 opened Mar 17, 2026 by kristentr

Loading…

[GHSA-86vq-ccwf-rm62] Umbraco.Engage.Forms Allows Unauthorized Access to Multiple API Endpoints

#7185 opened Mar 17, 2026 by Amalie-Wowern

Loading…

[GHSA-q9hv-hpm4-hj6x] CIRCL has an incorrect calculation in secp384r1 CombinedMult

#7173 opened Mar 15, 2026 by yusuke-koyoshi

Loading…

[GHSA-h2f4-v4c4-6wx4] Uncontrolled Resource Consumption in org.eclipse.jetty:jetty-server

#7093 opened Mar 2, 2026 by Meet003118

Loading…

[GHSA-mw96-cpmx-2vgc] Rollup 4 has Arbitrary File Write via Path Traversal Stale

#7089 opened Mar 1, 2026 by JaclynCodes

Loading…

[GHSA-7r86-cg39-jmmj] minimatch has ReDoS: matchOne() combinatorial backtracking via multiple non-adjacent GLOBSTAR segments Stale

#7087 opened Feb 28, 2026 by ljharb

Loading…

[GHSA-qq67-mvv5-fw3g] Astro has Full-Read SSRF in error rendering via Host: header injection Keep

#7055 opened Feb 24, 2026 by kytta

Loading…

[GHSA-8398-gmmx-564h] n8n has a Python sandbox escape Stale

#7029 opened Feb 23, 2026 by c0rydoras

Loading…

ProTip! Adding no:label will show everything without a label.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!