Skip to content

Pull requests: github/advisory-database

New pull request New
143 Open 6,657 Closed
143 Open 6,657 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

[GHSA-xgrm-4fwx-7qm8] pgx contains memory-safety vulnerability
#7722 opened May 16, 2026 by dor-hayun Loading…
[GHSA-c4j6-fc7j-m34r] Next.js vulnerable to server-side request forgery in applications using WebSocket upgrades
#7719 opened May 16, 2026 by Drbambi7 Loading…
2
[GHSA-9v3m-8fp8-mj99] Bootstrap Vulnerable to Cross-Site Scripting
#7717 opened May 16, 2026 by jasnow Loading…
[GHSA-5cq6-9f97-wjwx] Crypt::DSA versions through 1.19 for Perl use 2-args open...
#7716 opened May 16, 2026 by Vendetaaaa Loading…
[GHSA-r2q3-hjc8-7x6q] Crypt::DSA versions before 1.20 for Perl generate seeds...
#7715 opened May 16, 2026 by Vendetaaaa Loading…
[GHSA-4fcc-vrwx-v754] The Essential Chat Support plugin for WordPress is...
#7714 opened May 16, 2026 by Vendetaaaa Loading…
[GHSA-j4fx-xxwh-2485] Versions of the package jsondiffpatch before 0.7.6 are...
#7713 opened May 16, 2026 by Vendetaaaa Loading…
[GHSA-2f3m-j83v-344c] Versions of the package jsondiffpatch before 0.7.6 are...
#7712 opened May 16, 2026 by Vendetaaaa Loading…
[GHSA-95jq-xph2-cx9h] Add upstream fix commit reference
#7710 opened May 15, 2026 by massif-01 Loading…
1
[GHSA-45h5-66jx-r2wf] MJML allows mj-include directory traversal due to an incomplete fix for CVE-2020-12827
#7709 opened May 15, 2026 by LambArchie Loading…
1
[GHSA-mwv9-gp5h-frr4] Add upstream fix commit reference
#7708 opened May 15, 2026 by massif-01 Loading…
1
[GHSA-gxhx-2686-5h9g] Add upstream fix commit reference
#7707 opened May 15, 2026 by massif-01 Loading…
1
[GHSA-fv2f-rw9f-v9cm] An issue in Nodemailer smtp_server before v.3.18.3 allows...
#7706 opened May 15, 2026 by blue2cat Loading…
3
[GHSA-rpr9-rxv7-x643] Apostrophe has default XSS via xmp raw-text passthrough in sanitize-html
#7705 opened May 15, 2026 by scotje Loading…
1
[GHSA-3rfq-4wpf-qqw3] Micronaut has Unbounded bundleCache in ResourceBundleMessageSource that Allows Memory Exhaustion via Accept-Language Header
#7704 opened May 15, 2026 by jojojo8359 Loading…
2
[GHSA-6cr3-m628-79px] * Countermeasures for DPA within SYMCRYPTO engine on...
#7703 opened May 15, 2026 by Vendetaaaa Loading…
[GHSA-rm3r-35x9-jv93] A supply chain attack compromised the official...
#7702 opened May 15, 2026 by Vendetaaaa Loading…
[GHSA-9694-5xfg-m7vr] Permission control vulnerability in contacts. Impact:...
#7701 opened May 15, 2026 by Vendetaaaa Loading…
[GHSA-hr7c-pw36-w99g] Diagram's export module is vulnerable to Path Traversal...
#7700 opened May 15, 2026 by Vendetaaaa Loading…
[GHSA-rpr9-rxv7-x643] Apostrophe has default XSS via xmp raw-text passthrough in sanitize-html
#7699 opened May 15, 2026 by AND-TomHarris Loading…
2
[GHSA-vvfc-fp59-m92g] Langflow: DoS Through Lack of File Size Restriction via Deprecated Unauthenticated File Upload API
#7697 opened May 15, 2026 by ventusfortis Loading…
[GHSA-rpr9-rxv7-x643] Apostrophe has default XSS via xmp raw-text passthrough in sanitize-html
#7696 opened May 15, 2026 by Matsuuu Loading…
2
[GHSA-7gm6-w7mx-58cr] phpBB before 3.3.16 is vulnerable to Host Header...
#7695 opened May 15, 2026 by marc1706 Loading…
1
[GHSA-rpr9-rxv7-x643] Apostrophe has default XSS via xmp raw-text passthrough in sanitize-html
#7694 opened May 14, 2026 by arkon Loading…
1
[GHSA-xp4x-j9vh-c3wf] OS Command Injection and Command Injection in kill-port-process
#7693 opened May 14, 2026 by filipeom Loading…
ProTip! Follow long discussions with comments:>50.