-
Notifications
You must be signed in to change notification settings - Fork 517
Pull requests: github/advisory-database
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
[GHSA-fjxv-7rqg-78g4] form-data uses unsafe random function in form-data for choosing boundary
#6667
opened Jan 18, 2026 by
CosmicJesterX
Loading…
[GHSA-v778-237x-gjrc] Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto
#6666
opened Jan 17, 2026 by
taufanharyudiansah6-byte
Loading…
[GHSA-577h-p2hh-v4mv] Langflow CORS Account Takeover and RCE
#6665
opened Jan 17, 2026 by
augustocesarperin
Loading…
[GHSA-7x99-8x99-xc54] Code Injection in Salesforce Uni2TS
#6664
opened Jan 17, 2026 by
augustocesarperin
Loading…
[GHSA-q748-mcwg-xmqv] OpenStack Image Service (Glance) allows remote authenticated users to bypass access restrictions
#6663
opened Jan 17, 2026 by
priteau
Loading…
[GHSA-m494-w24q-6f7w] JDBC Driver for SQL Server has improper input validation issue
#6638
opened Jan 12, 2026 by
gdsmith
Loading…
[GHSA-77r5-gw3j-2mpf] Next.js Vulnerable to HTTP Request Smuggling
#6636
opened Jan 10, 2026 by
mistressxalexis
Loading…
[GHSA-54mj-vcvj-q3v5] Umbraco CMS has an arbitrary file upload vulnerability
#6633
opened Jan 9, 2026 by
legacy-git
Loading…
[GHSA-vj76-c3g6-qr5v] tar-fs has a symlink validation bypass if destination directory is predictable with a specific tarball
#6581
opened Dec 27, 2025 by
kristentr
Loading…
[GHSA-x4c5-c7rf-jjgv] @octokit/endpoint has a Regular Expression in parse that Leads to ReDoS Vulnerability Due to Catastrophic Backtracking
#6573
opened Dec 22, 2025 by
G-Rath
Loading…
[GHSA-f6mr-38g8-39rg] Ollama Platform has missing authentication enabling attackers to perform model management operations
Stale
#6571
opened Dec 22, 2025 by
Ankush-Pathak
Loading…
ProTip!
Adding no:label will show everything without a label.