The Wayback Machine - https://web.archive.org/web/20230109052859/https://github.com/github/advisory-database/pulls
Skip to content

Pull requests: github/advisory-database

New pull request New
36 Open 1,442 Closed
36 Open 1,442 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

[GHSA-vc29-mvwv-wpcq] Cross-site scripting (XSS) vulnerability in cake/libs...
#1579 opened Jan 6, 2023 by ravage84 Loading…
[GHSA-rw73-xmpv-j5x2] Directory traversal vulnerability in app/webroot/js...
#1578 opened Jan 6, 2023 by ravage84 Loading…
[GHSA-j8p3-8m69-2hqq] The clientIp function in CakePHP 3.2.4 and earlier allows...
#1577 opened Jan 6, 2023 by ravage84 Loading…
[GHSA-556q-h4vr-pgh2] CakePHP 2.x and 3.x before 3.1.5 might allow remote...
#1576 opened Jan 6, 2023 by ravage84 Loading…
[GHSA-5964-pq8r-4q62] The Xml class in CakePHP 2.1.x before 2.1.5 and 2.2.x...
#1575 opened Jan 6, 2023 by ravage84 Loading…
[GHSA-r7p6-fr3x-r877] CakePHP 1.3.7 allows remote attackers to obtain sensitive...
#1574 opened Jan 6, 2023 by ravage84 Loading…
[GHSA-g2vx-8v47-4vhh] The _validatePost function in libs/controller/components...
#1573 opened Jan 6, 2023 by ravage84 Loading…
[GHSA-9pgx-pf36-w46r] A vulnerability exists in CakePHP versions 4.0.x through...
#1572 opened Jan 6, 2023 by ravage84 Loading…
[GHSA-9c47-m6qq-7p4h] Prototype Pollution in JSON5 via Parse Method
#1560 opened Jan 4, 2023 by jordanbtucker Loading…
2
[GHSA-2j3r-x6xc-qqqj] Jenkins BMC Release Package and Deployment Plugin 1.1 and...
#1534 opened Dec 29, 2022 by NotMyFault Loading…
[GHSA-8g6v-g8qc-5w7j] Jenkins DigitalOcean Plugin 1.1 and earlier stores a...
#1533 opened Dec 29, 2022 by NotMyFault Loading…
[GHSA-64jr-ggw8-h9jc] Jenkins Debian Package Builder Plugin 1.6.11 and earlier...
#1532 opened Dec 29, 2022 by NotMyFault Loading…
[GHSA-h6pp-v4j6-w76c] Jenkins Dynamic Extended Choice Parameter Plugin 1.0.1...
#1531 opened Dec 29, 2022 by NotMyFault Loading…
[GHSA-723p-9rcj-xv8j] Jenkins RadarGun Plugin 1.7 and earlier does not...
#1530 opened Dec 29, 2022 by NotMyFault Loading…
[GHSA-7q9r-vhg2-789w] Jenkins Brakeman Plugin 0.12 and earlier did not escape...
#1529 opened Dec 29, 2022 by NotMyFault Loading…
[GHSA-wf76-qgqq-gcfj] Jenkins Google Kubernetes Engine Plugin 0.8.0 and earlier...
#1528 opened Dec 29, 2022 by NotMyFault Loading…
[GHSA-c3cg-mv5w-cvw8] Jenkins FitNesse Plugin 1.30 and earlier does not...
#1527 opened Dec 29, 2022 by NotMyFault Loading…
[GHSA-vvg2-hg3c-mqj3] Jenkins Azure AD Plugin 1.1.2 and earlier transmits...
#1526 opened Dec 29, 2022 by NotMyFault Loading…
[GHSA-8p4m-62gp-33j4] A missing permission check in Jenkins Pipeline GitHub...
#1525 opened Dec 29, 2022 by NotMyFault Loading…
[GHSA-x7rc-5mjg-5pvr] A missing permission check in Jenkins Pipeline GitHub...
#1524 opened Dec 29, 2022 by NotMyFault Loading…
[GHSA-qhxf-m7jm-jc57] A cross-site request forgery vulnerability in Jenkins...
#1523 opened Dec 29, 2022 by NotMyFault Loading…
[GHSA-xvhf-q744-5xm8] Jenkins NUnit Plugin 0.25 and earlier does not configure...
#1522 opened Dec 29, 2022 by NotMyFault Loading…
[GHSA-2rrx-q65f-8945] Jenkins OpenShift Deployer Plugin 1.2.0 and earlier...
#1514 opened Dec 29, 2022 by NotMyFault Loading…
[GHSA-p68c-xg89-2g5r] Jenkins Backlog Plugin 2.4 and earlier transmits...
#1512 opened Dec 29, 2022 by NotMyFault Loading…
[GHSA-4fjc-fwj2-7xfg] Jenkins Repository Connector Plugin 1.2.6 and earlier...
#1508 opened Dec 29, 2022 by NotMyFault Loading…
ProTip! Follow long discussions with comments:>50.