Skip to content

Actions: github/advisory-database

Actions

All workflows

Actions

Loading...
Loading

Showing runs from all workflows
2,081 workflow run results
2,081 workflow run results

Filter by Event

Filter by Status

Filter by Branch

Filter by Actor

[GHSA-f866-m9mv-2xr3] Spring Framework and Spring Security vulnerable to Deserialization of Untrusted Data Create PR staging branch #3787: Pull request #3991 opened by sunSUNQ
March 13, 2024 04:19 1m 0s
March 13, 2024 04:19 1m 0s
[GHSA-v596-fwhq-8x48] Improper Input Validation in org.springframework.security:spring-security-core, org.springframework.security:spring-security-core , and org.springframework:spring-core Create PR staging branch #3786: Pull request #3990 opened by sunSUNQ
March 13, 2024 04:17 55s
March 13, 2024 04:17 55s
[GHSA-cxrj-66c5-9fmh] Spring Framework when used in combination with any versions of Spring Security contains an authorization bypass Create PR staging branch #3785: Pull request #3989 opened by sunSUNQ
March 13, 2024 04:16 59s
March 13, 2024 04:16 59s
[GHSA-27xw-p8v6-9jjr] Spring Security vulnerable to Authorization Bypass Create PR staging branch #3784: Pull request #3988 opened by sunSUNQ
March 13, 2024 04:13 54s
March 13, 2024 04:13 54s
[GHSA-8wx2-9q48-vm9r] RFD attack via Content-Disposition header sourced from request input by Spring MVC or Spring WebFlux Application Create PR staging branch #3783: Pull request #3987 opened by sunSUNQ
March 13, 2024 04:11 54s
March 13, 2024 04:11 54s
[GHSA-hh26-6xwr-ggv7] Denial of service in Spring Framework Create PR staging branch #3782: Pull request #3986 opened by sunSUNQ
March 13, 2024 04:08 1m 50s
March 13, 2024 04:08 1m 50s
[GHSA-rqph-vqwm-22vc] Allocation of Resources Without Limits or Throttling in Spring Framework Create PR staging branch #3781: Pull request #3985 opened by sunSUNQ
March 13, 2024 04:07 55s
March 13, 2024 04:07 55s
[GHSA-7phw-cxx7-q9vq] Spring Framework is vulnerable to security bypass via mvcRequestMatcher pattern mismatch Create PR staging branch #3780: Pull request #3984 opened by sunSUNQ
March 13, 2024 04:06 1m 0s
March 13, 2024 04:06 1m 0s
[GHSA-564r-hj7v-mcr5] Spring Framework vulnerable to denial of service via specially crafted SpEL expression Create PR staging branch #3779: Pull request #3983 opened by sunSUNQ
March 13, 2024 04:05 59s
March 13, 2024 04:05 59s
[GHSA-wxqc-pxw9-g2p8] Spring Framework vulnerable to denial of service Create PR staging branch #3778: Pull request #3982 opened by sunSUNQ
March 13, 2024 04:04 56s
March 13, 2024 04:04 56s
[GHSA-v94h-hvhg-mf9h] Spring Framework vulnerable to denial of service Create PR staging branch #3777: Pull request #3981 opened by sunSUNQ
March 13, 2024 03:24 57s
March 13, 2024 03:24 57s
[GHSA-72w2-j52c-7682] Moodle SQL Injection vulnerability Delete PR staging and head branches #3495: Pull request #3141 closed by taladrane
March 13, 2024 00:21 2m 22s
March 13, 2024 00:21 2m 22s
[GHSA-c3hf-8vgx-72rh] Microsoft Security Advisory CVE-2023-36049: .NET Elevation of Privilege Vulnerability Delete PR staging and head branches #3494: Pull request #3129 closed by taladrane
March 13, 2024 00:21 2m 35s
March 13, 2024 00:21 2m 35s
Close stale PRs Close stale PRs #579: Scheduled
March 13, 2024 00:21 18s main
main
March 13, 2024 00:21 18s
[GHSA-6f9g-cxwr-q5jr] Arbitrary file read vulnerability through the Jenkins CLI can lead to RCE Delete PR staging and head branches #3493: Pull request #3980 closed by advisory-database bot
March 12, 2024 16:31 56s
March 12, 2024 16:31 56s
[GHSA-53ph-2r2x-vqw8] Cross-site WebSocket hijacking vulnerability in the Jenkins CLI Delete PR staging and head branches #3492: Pull request #3979 closed by shelbyc
March 12, 2024 16:29 59s
March 12, 2024 16:29 59s
[GHSA-279f-qwgh-h5mp] Jenkins does not exclude sensitive build variables from search Delete PR staging and head branches #3491: Pull request #3978 closed by advisory-database bot
March 12, 2024 16:28 57s
March 12, 2024 16:28 57s
[GHSA-8r3f-844c-mc37] The protojson.Unmarshal function can enter an infinite... Delete PR staging and head branches #3490: Pull request #3967 closed by advisory-database bot
March 12, 2024 16:27 1m 1s
March 12, 2024 16:27 1m 1s
[GHSA-rmr5-cpv2-vgjf] Denial of Service by injecting highly recursive collections or maps in XStream Delete PR staging and head branches #3489: Pull request #3975 closed by advisory-database bot
March 12, 2024 16:20 1m 1s
March 12, 2024 16:20 1m 1s
[GHSA-c735-g9f2-2mvp] Cross-Site Request Forgery in Jenkins Delete PR staging and head branches #3488: Pull request #3973 closed by advisory-database bot
March 12, 2024 16:01 1m 3s
March 12, 2024 16:01 1m 3s
[GHSA-qr42-82qj-mw65] Improper Limitation of a Pathname to a Restricted Directory in Jenkins Delete PR staging and head branches #3487: Pull request #3972 closed by advisory-database bot
March 12, 2024 15:58 56s
March 12, 2024 15:58 56s
[GHSA-w5v7-q2j4-fvpf] Cross-site scripting (XSS) vulnerability in Jenkins... Delete PR staging and head branches #3486: Pull request #3968 closed by advisory-database bot
March 12, 2024 15:04 1m 2s
March 12, 2024 15:04 1m 2s
[GHSA-6rh5-23hx-j452] Improper Authorization in Jenkins Core Delete PR staging and head branches #3485: Pull request #3971 closed by advisory-database bot
March 12, 2024 14:28 57s
March 12, 2024 14:28 57s
[GHSA-2x9h-h3c4-wqqh] Improper Neutralization of Special Elements used in an LDAP Query in Jenkins Delete PR staging and head branches #3484: Pull request #3970 closed by advisory-database bot
March 12, 2024 14:24 56s
March 12, 2024 14:24 56s
[GHSA-xrj7-x7gp-wwqr] Apache Solr's Streaming Expressions allow users to extract data from other Solr Clouds Delete PR staging and head branches #3483: Pull request #3966 closed by advisory-database bot
March 12, 2024 13:05 53s
March 12, 2024 13:05 53s