Skip to content

Pull requests: github/advisory-database

New pull request New
60 Open 6,615 Closed
60 Open 6,615 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

[GHSA-w5hq-g745-h8pq] uuid: Missing buffer bounds check in v3/v5/v6 when buf is provided
#7585 opened May 4, 2026 by milenkotomic Loading…
5
[GHSA-6rcx-55r6-jx65] A vulnerability was found in PrefectHQ prefect up to 3.6...
#7583 opened May 4, 2026 by nedlir Loading…
[GHSA-p3pq-hxmr-vqqr] A vulnerability has been found in PrefectHQ prefect up to...
#7582 opened May 4, 2026 by nedlir Loading…
[GHSA-hvph-5985-r63v] A flaw has been found in PrefectHQ prefect up to 3.6.13....
#7581 opened May 4, 2026 by nedlir Loading…
[GHSA-6rr6-v7cj-mxpg] A vulnerability was detected in PrefectHQ prefect up to 3...
#7580 opened May 4, 2026 by nedlir Loading…
[GHSA-x73w-g8hx-v7rp] Code injection in electerm
#7579 opened May 4, 2026 by filipeom Loading…
[GHSA-w5hq-g745-h8pq] uuid: Missing buffer bounds check in v3/v5/v6 when buf is provided
#7578 opened May 4, 2026 by c-harding Loading…
6
[GHSA-355h-qmc2-wpwf] Jetty has HTTP Request Smuggling via Chunked Extension Quoted-String Parsing
#7577 opened May 4, 2026 by tlarionova-max Loading…
1
Update Tekton Pipelines advisories with multi-branch patch ranges
#7575 opened May 4, 2026 by waveywaves Loading…
12
[GHSA-58qw-9mgm-455v] pip has an interpretation conflict due to handling both concatenated tar and ZIP files as ZIP files
#7574 opened May 4, 2026 by amine-malloul-gira Loading…
[GHSA-vpq2-c234-7xj6] @tootallnate/once vulnerable to Incorrect Control Flow Scoping
#7573 opened May 4, 2026 by janpe Loading…
4
[GHSA-85x2-r8xv-ww8c] Kirby CMS's pages.access/list and files.access/list permissions are not consistently checked in the Panel and REST API
#7572 opened May 3, 2026 by abundancemarble Loading…
1
[GHSA-prf8-cf2x-rhx7] fabric-sdk-java has ObjectInputStream.readObject() without ObjectInputFilter, which allows Java deserialization RCE
#7570 opened May 1, 2026 by brodmart Loading…
7
[GHSA-2wvh-87g2-89hr] OpenC3 COSMOS: Permissions Bypass Provides User Access to Unassigned Administrative Actions via Script Runner Tool
#7569 opened May 1, 2026 by sawitrisaengchan08-cell Loading…
1
[GHSA-x8mh-94wc-33gv] Apache Airflow's SMTP provider SmtpHook called Python's...
#7562 opened Apr 30, 2026 by francisbergin Loading…
2
Add advisory: asn1 BerReader infinite loop CPU DoS (CWE-835)
#7561 opened Apr 30, 2026 by tynus3 Loading…
2
[GHSA-qmq6-f8pr-cx5x] DUPLICATE - uuid: Missing buffer bounds check in v3/v5/v6 when buf is provided
#7555 opened Apr 30, 2026 by julianladisch Loading…
[GHSA-w5hq-g745-h8pq] uuid: Missing buffer bounds check in v3/v5/v6 when buf is provided
#7553 opened Apr 30, 2026 by julianladisch Loading…
[GHSA-5wfc-hjrc-gq87] hjson stack exhaustion vulnerability
#7552 opened Apr 30, 2026 by achibear Loading…
[GHSA-x744-4wpc-v9h2] Moby has AuthZ plugin bypass when provided oversized request bodies
#7549 opened Apr 30, 2026 by bottarocarlo Loading…
1
Improve GHSA-fm3h-p9wm-h74h
#7546 opened Apr 29, 2026 by e7457166-a11y Loading…
[GHSA-qpv2-rwc8-c993] Authentication Bypass vulnerability exists in Netmaker...
#7544 opened Apr 29, 2026 by rvizx Loading…
1
[GHSA-p93r-85wp-75v3] Bouncy Castle Has Covert Timing Channel Vulnerability
#7542 opened Apr 29, 2026 by amita-seal Loading…
[GHSA-q67f-28xg-22rw] Forge has signature forgery in Ed25519 due to missing S > L check
#7536 opened Apr 28, 2026 by DRAWING99 Loading…
1
[GHSA-h7wm-ph43-c39p] Scrapy denial of service vulnerability
#7532 opened Apr 28, 2026 by G-Rath Loading…
ProTip! Follow long discussions with comments:>50.