-
Notifications
You must be signed in to change notification settings - Fork 318
Insights: github/advisory-database
September 11, 2024 – September 18, 2024
Overview
-
- 17 Merged pull requests
- 1 Open pull request
- 3 Closed issues
- 0 New issues
Could not load contribution data
Please try again later
17 Pull requests merged by 10 people
-
[GHSA-w97f-w3hq-36g2] Keycloak Denial of Service vulnerability
#4817 merged
Sep 17, 2024 -
[GHSA-m979-w9wj-qfj9] HashiCorp Vault Improper Privilege Management
#4815 merged
Sep 16, 2024 -
[GHSA-66vw-v2x9-hw75] Podman publishes a malicious image to public registries
#4814 merged
Sep 16, 2024 -
[GHSA-4mp7-2m29-gqxf] HashiCorp Vault Authentication bypass
#4813 merged
Sep 16, 2024 -
[GHSA-p976-h52c-26p6] Rancher vulnerable to Privilege Escalation via manipulation of Secrets
#4811 merged
Sep 16, 2024 -
[GHSA-j6vv-vv26-rh7c] HashiCorp Vault Improper Privilege Management
#4810 merged
Sep 16, 2024 -
[GHSA-46v3-ggjg-qq3x] Rancher UI has multiple Cross-Site Scripting (XSS) issues
#4809 merged
Sep 16, 2024 -
[GHSA-wp7w-vx86-vj9h] Podman Elevated Container Privileges
#4808 merged
Sep 16, 2024 -
[GHSA-m3px-vjxr-fx4m] Filament Excel Vulnerable to Path Traversal Attack on Export Download Endpoint
#4806 merged
Sep 16, 2024 -
[GHSA-fcgg-qgxg-2g2x] EC-CUBE Open redirect vulnerability
#4801 merged
Sep 13, 2024 -
[GHSA-cx7f-g6mp-7hqm] Applications serving static resources through the...
#4804 merged
Sep 13, 2024 -
[GHSA-mv6w-j4xc-qpfw] Argo CD leaks repository credentials in user-facing error messages and in logs
#4794 merged
Sep 12, 2024 -
[GHSA-9wv6-86v2-598j] path-to-regexp outputs backtracking regular expressions
#4795 merged
Sep 12, 2024 -
[GHSA-9wv6-86v2-598j] path-to-regexp outputs backtracking regular expressions
#4793 merged
Sep 12, 2024 -
[GHSA-9wv6-86v2-598j] path-to-regexp outputs backtracking regular expressions
#4791 merged
Sep 12, 2024
1 Pull request opened by 1 person
-
[GHSA-x9r9-48rm-4xm6] FitNesse allows execution of arbitrary OS commands
#4816 opened
Sep 17, 2024
3 Issues closed by 2 people
-
q
#4778 closed
Sep 18, 2024 -
Multiple Patched Versions Allowed?
#4771 closed
Sep 17, 2024
3 Unresolved conversations
Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.
-
@wdp-gov/catalog-serialization-engine not a malware
#4783 commented on
Sep 18, 2024 • 0 new comments -
GHSA-m8rp-vv92-46c7 has mangled content and formatting since 58f1bbf
#4777 commented on
Sep 18, 2024 • 0 new comments -
[GHSA-45rp-q25w-4426] pretix Stored Cross-site Scripting vulnerability
#4742 commented on
Sep 14, 2024 • 0 new comments