Skip to content

Pull requests: github/advisory-database

New pull request New
30 Open 6,131 Closed
30 Open 6,131 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

[GHSA-87r5-mp6g-5w5j] All versions of the package jsonpath are vulnerable to...
#6815 opened Feb 9, 2026 by saivarun3407 Loading…
[GHSA-6fgp-m6q4-j3q5] The Pydantic-AI MCP Run Python tool configures the Deno...
#6814 opened Feb 9, 2026 by saivarun3407 Loading…
[GHSA-pfv4-wmph-5gc6] The Python code being run by 'runPython' or ...
#6812 opened Feb 9, 2026 by saivarun3407 Loading…
[GHSA-c244-p6m5-vqj6] Authentication Bypass by Alternate Name vulnerability in...
#6811 opened Feb 9, 2026 by saivarun3407 Loading…
[GHSA-5g2w-9f8g-g5q7] Apache Airflow versions before 3.1.7, has vulnerability...
#6810 opened Feb 9, 2026 by saivarun3407 Loading…
[GHSA-pm44-x5x7-24c4] Apache Airflow versions 3.1.0 through 3.1.6 contain an...
#6809 opened Feb 9, 2026 by saivarun3407 Loading…
Add missing CWE IDs to GHSA-4jqp-9qjv-57m2
#6808 opened Feb 8, 2026 by DeadManOfficial Loading…
[GHSA-77wx-cf44-5rxx] Predictable filename vulnerabilities in ASPECT may expose...
#6806 opened Feb 7, 2026 by asrar-mared Loading…
2
[GHSA-6f65-4fv2-wwch] Vendure vulnerable to timing attack that enables user enumeration in NativeAuthenticationStrategy
#6805 opened Feb 7, 2026 by ali963git Loading…
3
Add malware advisory MAL-2026-790 for p7zip-full (PyPI)
#6804 opened Feb 7, 2026 by saivarun3407 Loading…
2
[GHSA-563x-8ppc-xc7c] The Bold Page Builder plugin for WordPress is vulnerable...
#6803 opened Feb 7, 2026 by saivarun3407 Loading…
[GHSA-xr72-g735-4vwp] Neo4j Enterprise and Community editions have insufficient escaping of unicode characters in query log
#6802 opened Feb 7, 2026 by saivarun3407 Loading…
[GHSA-52jq-ww84-hqvp] A vulnerability has been found in Sanluan PublicCMS up to...
#6801 opened Feb 7, 2026 by saivarun3407 Loading…
[GHSA-4jqp-9qjv-57m2] Keylime Missing Authentication for Critical Function and Improper Authentication
#6800 opened Feb 7, 2026 by saivarun3407 Loading…
2
[GHSA-58pw-r2v4-pwjv] Improve advisory details: reference incomplete fix for CVE-2025-11001
#6791 opened Feb 6, 2026 by decsecre583 Loading…
1
[GHSA-x43h-8pfv-xx24] Improve advisory details: reference incomplete fix for CVE-2024-6383
#6790 opened Feb 6, 2026 by decsecre583 Loading…
1
[GHSA-cm59-8rmv-f2cj] Improve advisory details: reference incomplete fix for CVE-2024-5125
#6789 opened Feb 6, 2026 by decsecre583 Loading…
1
[GHSA-8jxr-mccc-mwg8] Improve advisory details: reference incomplete fix for CVE-2024-43795
#6788 opened Feb 6, 2026 by decsecre583 Loading…
1
[GHSA-632q-77qj-c89q] Improve advisory details: reference incomplete fix for CVE-2024-28709
#6787 opened Feb 6, 2026 by decsecre583 Loading…
1
[GHSA-vg7j-7cwx-8wgw] Mongoose search injection vulnerability
#6784 opened Feb 5, 2026 by ljharb Loading…
4
[GHSA-r6q2-hw4h-h46w] Race Condition in node-tar Path Reservations via Unicode Ligature Collisions on macOS APFS
#6733 opened Jan 28, 2026 by ssushant0011 Loading…
2
[GHSA-rqff-837h-mm52] Authorization bypass in url-parse Keep
#6723 opened Jan 26, 2026 by ljharb Loading…
2
[GHSA-xgcg-2hvp-fj6w] A cross-site scripting (XSS) vulnerability exists in...
#6716 opened Jan 26, 2026 by berkpseSICKAG Loading…
[GHSA-77c8-xpc7-q24c] The built-in XY Chart plugin is vulnerable to a DOM XSS...
#6715 opened Jan 26, 2026 by berkpseSICKAG Loading…
[GHSA-w5j6-7wpf-g6rw] A security vulnerability in the /apis/dashboard.grafana...
#6714 opened Jan 26, 2026 by berkpseSICKAG Loading…
1
ProTip! no:milestone will show everything without a milestone.