8 Pull requests merged by 5 people

• [GHSA-94g7-hpv8-h9qm] Remote code injection in Log4j

  #5972 merged Aug 7, 2025

• [GHSA-3rw8-4xrq-3f7p] Uptime Kuma ReDoS vulnerability

  #5969 merged Aug 7, 2025

• Update GHSA-mqcp-p2hv-vw6x.json

  #5912 merged Aug 5, 2025

• [GHSA-9j5q-479x-43g2] A prototype pollution in the function deepMerge of ...

  #5902 merged Aug 5, 2025

• [GHSA-8554-jxcw-454q] Webargs mishandles concurrent JSON parsing

  #5899 merged Aug 4, 2025

• [GHSA-rr8j-7w34-xp5j] Vault Community Edition privilege escalation vulnerability

  #5898 merged Aug 4, 2025

• [GHSA-g233-2p4r-3q7v] Hashicorp Vault vulnerable to denial of service through memory exhaustion

  #5897 merged Aug 4, 2025

• [GHSA-jg74-mwgw-v6x3] Vault SSH Secrets Engine Configuration Did Not Restrict Valid Principals By Default

  #5896 merged Aug 4, 2025

8 Pull requests opened by 2 people

• [GHSA-h4h6-vccr-44h2] uptrace pgdriver SQL injection vulnerability

  #5975 opened Aug 9, 2025

• [GHSA-29mw-wpgm-hmr9] Regular Expression Denial of Service (ReDoS) in lodash

  #5976 opened Aug 10, 2025

• [GHSA-35jh-r3h4-6jhm] Command Injection in lodash

  #5977 opened Aug 10, 2025

• [GHSA-p6mc-m468-83gw] Prototype Pollution in lodash

  #5978 opened Aug 10, 2025

• [GHSA-fvqr-27wr-82fm] Prototype Pollution in lodash

  #5979 opened Aug 10, 2025

• [GHSA-4xc9-xhrj-v574] Prototype Pollution in lodash

  #5980 opened Aug 10, 2025

• [GHSA-jf85-cpcp-j695] Prototype Pollution in lodash

  #5981 opened Aug 10, 2025

• [GHSA-x5rq-j2xg-h7qm] Regular Expression Denial of Service (ReDoS) in lodash

  #5982 opened Aug 10, 2025

5 Issues closed by 1 person

• request to review and remove GHSAs

  #5973 closed Aug 8, 2025

• Since "Router firmware" or "Embedded device" ecosystem is not present!!

  #5886 closed Aug 7, 2025

• There is no option labeled "PHP" in the ecosystem dropdown.

  #5885 closed Aug 7, 2025

• Advisory GHSA-3rw8-4xrq-3f7p / CVE-2025-26042 missing fixed version

  #5970 closed Aug 7, 2025

• > https://minepi.com/blog/pi-lockup/

  #5905 closed Aug 5, 2025

2 Unresolved conversations

Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.

• [GHSA-fr5w-98mc-jjvg] Arbitrary file upload in Mingsoft MCMS

  #5834 commented on Aug 7, 2025 • 0 new comments

• [GHSA-7653-r8cq-rf8w] The Nginx Cache Purge Preload plugin for WordPress is...

  #5845 commented on Aug 8, 2025 • 0 new comments