-
Notifications
You must be signed in to change notification settings - Fork 446
Pull requests: github/advisory-database
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
[GHSA-x8qp-wqqm-57ph] vue-i18n's escapeParameterHtml does not prevent DOM-based XSS through its tag attributes
#5819
opened Jul 17, 2025 by
luoingly
Loading…
[GHSA-36wv-v2qp-v4g4] Apache CXF is vulnerable to DoS attacks as entire files are read into memory and logged
#5818
opened Jul 17, 2025 by
pavelarnost
Loading…
[GHSA-c23v-vqw5-52c5] PowerJob vulnerable to Incorrect Access Control via the create user/save interface.
#5812
opened Jul 16, 2025 by
achibear
Loading…
[GHSA-8w3f-4r8f-pf53] Remote code execution through js2py onCaptchaResult
#5809
opened Jul 15, 2025 by
odaysec
Loading…
[GHSA-3wqc-mwfx-672p] Traefik affected by Go oauth2/jws Improper Validation of Syntactic Correctness of Input vulnerability
#5808
opened Jul 15, 2025 by
prabhu
Loading…
[GHSA-34rf-485x-g5h7] Arbitrary Command Injection in Kubernetes Headlamp via macOS Process codeSign
#5802
opened Jul 11, 2025 by
odaysec
Loading…
[GHSA-wx5j-54mm-rqqq] HTTP request smuggling in netty
#5792
opened Jul 5, 2025 by
poc-effectiveness
Loading…
[GHSA-m8p2-495h-ccmh] The SafeHtml annotation in Hibernate-Validator does not properly guard against XSS attacks
#5791
opened Jul 5, 2025 by
poc-effectiveness
Loading…
[GHSA-9fq2-x9r6-wfmf] Numpy Deserialization of Untrusted Data
Stale
#5777
opened Jun 30, 2025 by
boyapatiakhil7
Loading…
[GHSA-9pp5-9c7g-4r83] Spring Security authorization bypass for method security annotations on private methods
Keep
#5747
opened Jun 24, 2025 by
tomabai
Loading…
ProTip!
Updated in the last three days: updated:>2025-07-14.