-
Notifications
You must be signed in to change notification settings - Fork 504
Pull requests: github/advisory-database
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
[GHSA-95fv-5gfj-2r84] Emby Server API Vulnerability allowing to gain administrative access without precondition
#6584
opened Dec 27, 2025 by
softworkz
Loading…
[GHSA-c67j-w6g6-q2cm] LangChain serialization injection vulnerability enables secret extraction in dumps/loads APIs
#6583
opened Dec 27, 2025 by
asrar-mared
Loading…
[GHSA-9qr9-h5gf-34mp] Next.js is vulnerable to RCE in React flight protocol
#6582
opened Dec 27, 2025 by
asrar-mared
Loading…
[GHSA-vj76-c3g6-qr5v] tar-fs has a symlink validation bypass if destination directory is predictable with a specific tarball
#6581
opened Dec 27, 2025 by
kristentr
Loading…
[GHSA-225v-733h-9gwv] Clash Verge Rev thru 2.2.3 forces the installation of...
#6579
opened Dec 25, 2025 by
Dragon1573
Loading…
[GHSA-5j98-mcp5-4vw2] glob CLI: Command injection via -c/--cmd executes matches with shell:true
#6576
opened Dec 23, 2025 by
sbgitZZ
Loading…
[GHSA-x4c5-c7rf-jjgv] @octokit/endpoint has a Regular Expression in parse that Leads to ReDoS Vulnerability Due to Catastrophic Backtracking
#6573
opened Dec 22, 2025 by
G-Rath
Loading…
[GHSA-f6mr-38g8-39rg] Ollama Platform has missing authentication enabling attackers to perform model management operations
#6571
opened Dec 22, 2025 by
Ankush-Pathak
Loading…
[GHSA-3xgq-45jj-v275] Regular Expression Denial of Service (ReDoS) in cross-spawn
Stale
#6483
opened Nov 30, 2025 by
aprendis543
Loading…
ProTip!
Add no:assignee to see everything that’s not assigned.