Skip to content

Pull requests: github/advisory-database

New pull request New
7 Open 5,965 Closed
7 Open 5,965 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

[GHSA-h755-8qp9-cq85] protobufjs Prototype Pollution vulnerability
#6608 opened Jan 4, 2026 by asrar-mared Loading…
10 tasks
6
[GHSA-6rw7-vpxm-498p] qs's arrayLimit bypass in its bracket notation allows DoS via memory exhaustion
#6606 opened Jan 4, 2026 by Foysalmeazi Loading…
1
[GHSA-mrfv-m5wm-5w6w] libsodium before ad3004e, in atypical use cases involving...
#6605 opened Jan 3, 2026 by loganaden Loading…
1
[GHSA-vj76-c3g6-qr5v] tar-fs has a symlink validation bypass if destination directory is predictable with a specific tarball
#6581 opened Dec 27, 2025 by kristentr Loading…
2
[GHSA-5j98-mcp5-4vw2] glob CLI: Command injection via -c/--cmd executes matches with shell:true
#6576 opened Dec 23, 2025 by sbgitZZ Loading…
3
[GHSA-x4c5-c7rf-jjgv] @octokit/endpoint has a Regular Expression in parse that Leads to ReDoS Vulnerability Due to Catastrophic Backtracking
#6573 opened Dec 22, 2025 by G-Rath Loading…
3
[GHSA-f6mr-38g8-39rg] Ollama Platform has missing authentication enabling attackers to perform model management operations
#6571 opened Dec 22, 2025 by Ankush-Pathak Loading…
4
ProTip! Filter pull requests by the default branch with base:main.