-
Notifications
You must be signed in to change notification settings - Fork 528
Pull requests: github/advisory-database
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
[GHSA-2x45-7fc3-mxwq] php-jwt contains weak encryption
#6954
opened Feb 18, 2026 by
derhansen
Loading…
[GHSA-58pw-r2v4-pwjv] Improve advisory details: reference incomplete fix for CVE-2025-11001
#6791
opened Feb 6, 2026 by
decsecre583
Loading…
[GHSA-x43h-8pfv-xx24] Improve advisory details: reference incomplete fix for CVE-2024-6383
#6790
opened Feb 6, 2026 by
decsecre583
Loading…
[GHSA-cm59-8rmv-f2cj] Improve advisory details: reference incomplete fix for CVE-2024-5125
#6789
opened Feb 6, 2026 by
decsecre583
Loading…
[GHSA-8jxr-mccc-mwg8] Improve advisory details: reference incomplete fix for CVE-2024-43795
#6788
opened Feb 6, 2026 by
decsecre583
Loading…
[GHSA-632q-77qj-c89q] Improve advisory details: reference incomplete fix for CVE-2024-28709
#6787
opened Feb 6, 2026 by
decsecre583
Loading…
[GHSA-vg7j-7cwx-8wgw] Mongoose search injection vulnerability
#6784
opened Feb 5, 2026 by
ljharb
Loading…
[GHSA-r6q2-hw4h-h46w] Race Condition in node-tar Path Reservations via Unicode Ligature Collisions on macOS APFS
Stale
#6733
opened Jan 28, 2026 by
ssushant0011
Loading…
[GHSA-rqff-837h-mm52] Authorization bypass in url-parse
Keep
#6723
opened Jan 26, 2026 by
ljharb
Loading…
[GHSA-8v38-pw62-9cw2] url-parse Incorrectly parses URLs that include an '@'
Keep
#6700
opened Jan 24, 2026 by
ljharb
Loading…
[GHSA-77r5-gw3j-2mpf] Next.js Vulnerable to HTTP Request Smuggling
#6636
opened Jan 10, 2026 by
mistressxalexis
Loading…
ProTip!
Updated in the last three days: updated:>2026-02-16.