-
Notifications
You must be signed in to change notification settings - Fork 320
Insights: github/advisory-database
September 21, 2024 – September 28, 2024
Overview
-
- 15 Merged pull requests
- 0 Open pull requests
- 1 Closed issue
- 2 New issues
Could not load contribution data
Please try again later
15 Pull requests merged by 13 people
-
[GHSA-59hf-mpf8-pqjh] Mattermost versions 9.11.x <= 9.11.0 and 9.5.x <= 9.5.8...
#4849 merged
Sep 27, 2024 -
[GHSA-vp98-w2p3-mv35] Apache Log4j 1.x (EOL) allows Denial of Service (DoS)
#4847 merged
Sep 27, 2024 -
[GHSA-j76j-rqwj-jmvv] Keycloak Session Fixation vulnerability
#4846 merged
Sep 27, 2024 -
[GHSA-f78j-4w3g-4q65] StimulusReflex arbitrary method call
#4844 merged
Sep 25, 2024 -
[GHSA-48cr-j2cx-mcr8] Inadequate Encryption Strength vulnerability in Apache...
#4842 merged
Sep 25, 2024 -
[GHSA-f5fw-25gw-5m92] Apache Hadoop’s RunJar.run() does not set permissions for...
#4841 merged
Sep 25, 2024 -
[GHSA-6gch-63wp-4v5f] In Apache Linkis <= 1.5.0, a Random string security...
#4840 merged
Sep 25, 2024 -
[GHSA-6qmx-42h2-j8h6] .NET Elevation of Privilege Vulnerability
#4838 merged
Sep 24, 2024 -
[GHSA-6f62-3596-g6w7] HTTP Request Smuggling in ruby webrick
#4837 merged
Sep 24, 2024 -
[GHSA-6f62-3596-g6w7] HTTP Request Smuggling in ruby webrick
#4836 merged
Sep 24, 2024 -
[GHSA-mg8j-w93w-xjgc] Drupal Full Path Disclosure
#4827 merged
Sep 23, 2024 -
[GHSA-2jv5-9r88-3w3p] python-multipart vulnerable to Content-Type Header ReDoS
#4829 merged
Sep 23, 2024 -
[GHSA-296q-rj83-g9rq] Reflected Cross Site-Scripting (XSS) in Oveleon Cookiebar
#4831 merged
Sep 23, 2024
1 Issue closed by 1 person
-
GHSA-m8rp-vv92-46c7 has mangled content and formatting since 58f1bbf
#4777 closed
Sep 22, 2024
2 Issues opened by 2 people
-
Add Spring Security Advisories as data source for GHSA database
#4843 opened
Sep 25, 2024 -
A question about review priority
#4832 opened
Sep 23, 2024
3 Unresolved conversations
Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.
-
[GHSA-45rp-q25w-4426] pretix Stored Cross-site Scripting vulnerability
#4742 commented on
Sep 27, 2024 • 0 new comments -
[GHSA-j9wf-vvm6-4r9w] Unverified Ownership in Kubernetes
#4766 commented on
Sep 27, 2024 • 0 new comments -
[GHSA-x9r9-48rm-4xm6] FitNesse allows execution of arbitrary OS commands
#4816 commented on
Sep 26, 2024 • 0 new comments