-
Notifications
You must be signed in to change notification settings - Fork 653
Pull requests: github/advisory-database
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
[GHSA-hhpq-7wg4-36jm] CakePHP Authentication: Open redirect weakness via backslash bypass
#8485
opened Jul 3, 2026 by
markstory
Loading…
[GHSA-jc38-x7x8-2xc8] PHP JWT Framework: JWSVerifier uses algorithm from unprotected header, enabling algorithm confusion attacks
#8484
opened Jul 3, 2026 by
samuelwei
Loading…
[GHSA-q742-qvgc-gc2f] TinyMCE Cross-Site Scripting (XSS) vulnerability using through data-mce- prefixed src, href, style attributes
#8483
opened Jul 3, 2026 by
sbrinkhorst
Loading…
[GHSA-v98h-vmpc-fpqv] TinyMCE Cross-Site Scripting (XSS) vulnerability through
mce:protected comments
#8482
opened Jul 3, 2026 by
sbrinkhorst
Loading…
[GHSA-v5pm-xwqc-g5wc] Microsoft.OpenAPI: Circular schema references may terminate OpenAPI parsing
#8481
opened Jul 3, 2026 by
mahsa-lamiyan
Loading…
[GHSA-v5pm-xwqc-g5wc] Microsoft.OpenAPI: Circular schema references may terminate OpenAPI parsing
#8480
opened Jul 2, 2026 by
Falco20019
Loading…
[GHSA-wm64-883p-84j3] An issue was discovered in H2 1.4.197. Insecure handling...
#8478
opened Jul 2, 2026 by
levpachmanov
Loading…
[GHSA-vrv9-rjp4-w93c] Description:
To issue and renew TLS certificates on...
#8477
opened Jul 2, 2026 by
DavidOsipov
Loading…
[GHSA-jgpv-4h4c-xhw3] Uncontrolled Resource Consumption in pillow
#8475
opened Jul 2, 2026 by
yusuke-koyoshi
Loading…
[GHSA-8988-4f7v-96qf] OpenTelemetry Core: Unbounded memory allocation in W3C Baggage propagation
#8474
opened Jul 2, 2026 by
Lokeninfinitypoint
Loading…
[GHSA-567r-vvh5-jjr8] ACE vulnerability in conditional configuration file...
#8473
opened Jul 1, 2026 by
beth-soptim
Loading…
Previous Next
ProTip!
What’s not been updated in a month: updated:<2026-06-03.