github / advisory-database Public

Notifications You must be signed in to change notification settings
Fork 522
Star 2.1k

Code
Issues 76
Pull requests 16
Discussions
Actions
Models
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Models
Security
Insights

Pull requests: github/advisory-database

Labels 15 Milestones 0

New pull request New

16 Open 6,057 Closed

Author

Filter by author

Uh oh!

There was an error while loading. Please reload this page.

Label

Filter by label

Uh oh!

There was an error while loading. Please reload this page.

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Uh oh!

There was an error while loading. Please reload this page.

Milestones

Filter by milestone

Uh oh!

There was an error while loading. Please reload this page.

Reviews

Filter by reviews

No reviews Review required Approved review Changes requested

Assignee

Filter by who’s assigned

Assigned to nobody

Uh oh!

There was an error while loading. Please reload this page.

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated Best match

Most reactions

Pull requests list

[GHSA-mq86-p3gw-wcpj] In Grafana, an excessively long dashboard title or panel...

#6721 opened Jan 26, 2026 by grigoer

Loading…

[GHSA-gm89-qh2c-m553] An open redirect vulnerability has been identified in...

#6720 opened Jan 26, 2026 by grigoer

Loading…

[GHSA-9r7m-2qj2-8f7h] This vulnerability in Grafana's datasource proxy API...

#6719 opened Jan 26, 2026 by grigoer

Loading…

[GHSA-q3c7-4hv8-jhvp] An access control vulnerability was discovered in Grafana...

#6718 opened Jan 26, 2026 by grigoer

Loading…

[GHSA-p5pg-4vx4-pqj7] Grafana is an open-source platform for monitoring and...

#6717 opened Jan 26, 2026 by grigoer

Loading…

Fix version ranges for GHSA-xvmh-25jw-gmmm

#6712 opened Jan 26, 2026 by Seldaek

Loading…

[GHSA-fjxv-7rqg-78g4] form-data uses unsafe random function in form-data for choosing boundary

#6711 opened Jan 26, 2026 by CosmicJesterX

Loading…

[GHSA-j4rc-96xj-gvqc] phpMyFAQ: Public API endpoints expose emails and invisible questions

#6708 opened Jan 25, 2026 by gitme1-ym

Loading…

[GHSA-mwr6-3gp8-9jmj] orval MCP client is vulnerable to a code injection attack.

#6706 opened Jan 25, 2026 by gitme1-ym

Loading…

[GHSA-qwcr-r2fm-qrc7] body-parser vulnerable to denial of service when url encoding is enabled

#6703 opened Jan 24, 2026 by asrar-mared

Loading…

[GHSA-w5p7-h5w8-2hfq] Regular Expression Denial of Service in trim

#6701 opened Jan 24, 2026 by asrar-mared

Loading…

[GHSA-8v38-pw62-9cw2] url-parse Incorrectly parses URLs that include an '@'

#6700 opened Jan 24, 2026 by ljharb

Loading…

[GHSA-m494-w24q-6f7w] JDBC Driver for SQL Server has improper input validation issue

#6638 opened Jan 12, 2026 by gdsmith

Loading…

[GHSA-77r5-gw3j-2mpf] Next.js Vulnerable to HTTP Request Smuggling

#6636 opened Jan 10, 2026 by mistressxalexis

Loading…

[GHSA-vj76-c3g6-qr5v] tar-fs has a symlink validation bypass if destination directory is predictable with a specific tarball Stale

#6581 opened Dec 27, 2025 by kristentr

Loading…

[GHSA-x4c5-c7rf-jjgv] @octokit/endpoint has a Regular Expression in parse that Leads to ReDoS Vulnerability Due to Catastrophic Backtracking

#6573 opened Dec 22, 2025 by G-Rath

Loading…

ProTip! Mix and match filters to narrow down what you’re looking for.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!