-
Notifications
You must be signed in to change notification settings - Fork 519
Pull requests: github/advisory-database
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
[GHSA-m39p-34qh-rh3w] A code injection vulnerability in the binary-parser...
#6678
opened Jan 20, 2026 by
sei-vsarvepalli
Loading…
[GHSA-hxvr-gg2w-j48x] BackendAI vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
#6671
opened Jan 19, 2026 by
Yaminyam
Loading…
[GHSA-h889-475r-wfmm] Backend.AI Missing Authorization vulnerability
#6669
opened Jan 19, 2026 by
Yaminyam
Loading…
[GHSA-577h-p2hh-v4mv] Langflow CORS Account Takeover and RCE
#6665
opened Jan 17, 2026 by
augustocesarperin
Loading…
[GHSA-7x99-8x99-xc54] Code Injection in Salesforce Uni2TS
#6664
opened Jan 17, 2026 by
augustocesarperin
Loading…
[GHSA-m494-w24q-6f7w] JDBC Driver for SQL Server has improper input validation issue
#6638
opened Jan 12, 2026 by
gdsmith
Loading…
[GHSA-77r5-gw3j-2mpf] Next.js Vulnerable to HTTP Request Smuggling
#6636
opened Jan 10, 2026 by
mistressxalexis
Loading…
[GHSA-54mj-vcvj-q3v5] Umbraco CMS has an arbitrary file upload vulnerability
#6633
opened Jan 9, 2026 by
legacy-git
Loading…
[GHSA-vj76-c3g6-qr5v] tar-fs has a symlink validation bypass if destination directory is predictable with a specific tarball
Stale
#6581
opened Dec 27, 2025 by
kristentr
Loading…
[GHSA-x4c5-c7rf-jjgv] @octokit/endpoint has a Regular Expression in parse that Leads to ReDoS Vulnerability Due to Catastrophic Backtracking
#6573
opened Dec 22, 2025 by
G-Rath
Loading…
[GHSA-f6mr-38g8-39rg] Ollama Platform has missing authentication enabling attackers to perform model management operations
Stale
#6571
opened Dec 22, 2025 by
Ankush-Pathak
Loading…
ProTip!
What’s not been updated in a month: updated:<2025-12-20.