Skip to content

File tree

advisories/github-reviewed/2025/10/GHSA-xvp7-8vm8-xfxx/GHSA-xvp7-8vm8-xfxx.json

Lines changed: 7 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-xvp7-8vm8-xfxx",
4-
"modified": "2025-10-20T17:55:59Z",
4+
"modified": "2026-06-08T23:28:41Z",
55
"published": "2025-10-20T17:55:59Z",
66
"aliases": [],
77
"summary": "Actual Sync-server Gocardless service is logging sensitive data including bearer tokens and account numbers",
@@ -26,11 +26,14 @@
2626
"introduced": "0"
2727
},
2828
{
29-
"last_affected": "25.10.0"
29+
"fixed": "25.11.0"
3030
}
3131
]
3232
}
33-
]
33+
],
34+
"database_specific": {
35+
"last_known_affected_version_range": "<= 25.10.0"
36+
}
3437
}
3538
],
3639
"references": [
@@ -62,6 +65,7 @@
6265
"database_specific": {
6366
"cwe_ids": [
6467
"CWE-209",
68+
"CWE-215",
6569
"CWE-219"
6670
],
6771
"severity": "MODERATE",

advisories/github-reviewed/2026/04/GHSA-69r9-qgr7-g2wj/GHSA-69r9-qgr7-g2wj.json

Lines changed: 9 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-69r9-qgr7-g2wj",
4-
"modified": "2026-04-15T22:36:04Z",
4+
"modified": "2026-06-08T23:28:55Z",
55
"published": "2026-04-09T21:31:30Z",
66
"aliases": [
77
"CVE-2026-34486"
@@ -188,6 +188,14 @@
188188
{
189189
"type": "WEB",
190190
"url": "https://www.herodevs.com/vulnerability-directory/cve-2026-34486"
191+
},
192+
{
193+
"type": "WEB",
194+
"url": "https://www.vicarius.io/vsociety/posts/cve-2026-34486-detection-script-rce-on-apache-tomcat"
195+
},
196+
{
197+
"type": "WEB",
198+
"url": "https://www.vicarius.io/vsociety/posts/cve-2026-34486-mitigation-script-rce-on-apache-tomcat"
191199
}
192200
],
193201
"database_specific": {

advisories/github-reviewed/2026/05/GHSA-6269-cqxg-mhhv/GHSA-6269-cqxg-mhhv.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-6269-cqxg-mhhv",
4-
"modified": "2026-05-14T16:36:12Z",
4+
"modified": "2026-06-08T23:30:27Z",
55
"published": "2026-05-14T16:36:12Z",
66
"aliases": [
77
"CVE-2026-44898"
@@ -43,6 +43,10 @@
4343
"type": "WEB",
4444
"url": "https://github.com/lepture/mistune/security/advisories/GHSA-6269-cqxg-mhhv"
4545
},
46+
{
47+
"type": "ADVISORY",
48+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44898"
49+
},
4650
{
4751
"type": "WEB",
4852
"url": "https://github.com/lepture/mistune/commit/04880a0"
@@ -63,6 +67,6 @@
6367
"severity": "MODERATE",
6468
"github_reviewed": true,
6569
"github_reviewed_at": "2026-05-14T16:36:12Z",
66-
"nvd_published_at": null
70+
"nvd_published_at": "2026-05-26T21:16:39Z"
6771
}
6872
}

advisories/github-reviewed/2026/05/GHSA-8g87-j6q8-g93x/GHSA-8g87-j6q8-g93x.json

Lines changed: 10 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-8g87-j6q8-g93x",
4-
"modified": "2026-05-08T23:40:04Z",
4+
"modified": "2026-06-08T23:30:19Z",
55
"published": "2026-05-08T23:40:04Z",
66
"aliases": [
77
"CVE-2026-44708"
@@ -40,9 +40,17 @@
4040
"type": "WEB",
4141
"url": "https://github.com/lepture/mistune/security/advisories/GHSA-8g87-j6q8-g93x"
4242
},
43+
{
44+
"type": "ADVISORY",
45+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44708"
46+
},
4347
{
4448
"type": "PACKAGE",
4549
"url": "https://github.com/lepture/mistune"
50+
},
51+
{
52+
"type": "WEB",
53+
"url": "https://github.com/lepture/mistune/releases/tag/v3.2.1"
4654
}
4755
],
4856
"database_specific": {
@@ -52,6 +60,6 @@
5260
"severity": "MODERATE",
5361
"github_reviewed": true,
5462
"github_reviewed_at": "2026-05-08T23:40:04Z",
55-
"nvd_published_at": null
63+
"nvd_published_at": "2026-05-26T21:16:38Z"
5664
}
5765
}

advisories/github-reviewed/2026/05/GHSA-9hmg-827w-9rhj/GHSA-9hmg-827w-9rhj.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-9hmg-827w-9rhj",
4-
"modified": "2026-05-05T17:15:32Z",
4+
"modified": "2026-06-08T23:28:00Z",
55
"published": "2026-05-05T17:15:32Z",
66
"aliases": [
77
"CVE-2026-41164"
@@ -40,6 +40,10 @@
4040
"type": "WEB",
4141
"url": "https://github.com/nuts-foundation/nuts-node/security/advisories/GHSA-9hmg-827w-9rhj"
4242
},
43+
{
44+
"type": "ADVISORY",
45+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-41164"
46+
},
4347
{
4448
"type": "PACKAGE",
4549
"url": "https://github.com/nuts-foundation/nuts-node"
@@ -60,6 +64,6 @@
6064
"severity": "MODERATE",
6165
"github_reviewed": true,
6266
"github_reviewed_at": "2026-05-05T17:15:32Z",
63-
"nvd_published_at": null
67+
"nvd_published_at": "2026-05-26T18:16:47Z"
6468
}
6569
}

advisories/github-reviewed/2026/05/GHSA-ccfx-mfmx-2fx9/GHSA-ccfx-mfmx-2fx9.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-ccfx-mfmx-2fx9",
4-
"modified": "2026-05-14T16:36:18Z",
4+
"modified": "2026-06-08T23:30:31Z",
55
"published": "2026-05-14T16:36:18Z",
66
"aliases": [
77
"CVE-2026-44899"
@@ -43,6 +43,10 @@
4343
"type": "WEB",
4444
"url": "https://github.com/lepture/mistune/security/advisories/GHSA-ccfx-mfmx-2fx9"
4545
},
46+
{
47+
"type": "ADVISORY",
48+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44899"
49+
},
4650
{
4751
"type": "PACKAGE",
4852
"url": "https://github.com/lepture/mistune"
@@ -59,6 +63,6 @@
5963
"severity": "MODERATE",
6064
"github_reviewed": true,
6165
"github_reviewed_at": "2026-05-14T16:36:18Z",
62-
"nvd_published_at": null
66+
"nvd_published_at": "2026-05-26T21:16:39Z"
6367
}
6468
}

advisories/github-reviewed/2026/05/GHSA-cf92-gfcw-6v53/GHSA-cf92-gfcw-6v53.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-cf92-gfcw-6v53",
4-
"modified": "2026-05-06T20:40:17Z",
4+
"modified": "2026-06-08T23:28:03Z",
55
"published": "2026-05-06T20:40:17Z",
66
"aliases": [
77
"CVE-2026-42448"
@@ -43,6 +43,10 @@
4343
"type": "WEB",
4444
"url": "https://github.com/magic-wormhole/magic-wormhole/security/advisories/GHSA-cf92-gfcw-6v53"
4545
},
46+
{
47+
"type": "ADVISORY",
48+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42448"
49+
},
4650
{
4751
"type": "PACKAGE",
4852
"url": "https://github.com/magic-wormhole/magic-wormhole"
@@ -55,6 +59,6 @@
5559
"severity": "LOW",
5660
"github_reviewed": true,
5761
"github_reviewed_at": "2026-05-06T20:40:17Z",
58-
"nvd_published_at": null
62+
"nvd_published_at": "2026-05-26T18:16:48Z"
5963
}
6064
}

advisories/github-reviewed/2026/05/GHSA-fv7c-fp4j-7gwp/GHSA-fv7c-fp4j-7gwp.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-fv7c-fp4j-7gwp",
4-
"modified": "2026-05-08T20:34:07Z",
4+
"modified": "2026-06-08T23:28:08Z",
55
"published": "2026-05-08T20:34:07Z",
66
"aliases": [
77
"CVE-2026-44728"
@@ -65,6 +65,10 @@
6565
"type": "WEB",
6666
"url": "https://github.com/babel/babel/security/advisories/GHSA-fv7c-fp4j-7gwp"
6767
},
68+
{
69+
"type": "ADVISORY",
70+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44728"
71+
},
6872
{
6973
"type": "PACKAGE",
7074
"url": "https://github.com/babel/babel"
@@ -78,6 +82,6 @@
7882
"severity": "HIGH",
7983
"github_reviewed": true,
8084
"github_reviewed_at": "2026-05-08T20:34:07Z",
81-
"nvd_published_at": null
85+
"nvd_published_at": "2026-05-26T18:16:50Z"
8286
}
8387
}

advisories/github-reviewed/2026/05/GHSA-g47v-rwmh-r9f8/GHSA-g47v-rwmh-r9f8.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-g47v-rwmh-r9f8",
4-
"modified": "2026-05-08T23:12:51Z",
4+
"modified": "2026-06-08T23:30:15Z",
55
"published": "2026-05-08T23:12:51Z",
66
"aliases": [
77
"CVE-2026-44844"
@@ -43,6 +43,10 @@
4343
"type": "WEB",
4444
"url": "https://github.com/GOVCERT-LU/eml_parser/security/advisories/GHSA-g47v-rwmh-r9f8"
4545
},
46+
{
47+
"type": "ADVISORY",
48+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44844"
49+
},
4650
{
4751
"type": "PACKAGE",
4852
"url": "https://github.com/GOVCERT-LU/eml_parser"
@@ -55,6 +59,6 @@
5559
"severity": "MODERATE",
5660
"github_reviewed": true,
5761
"github_reviewed_at": "2026-05-08T23:12:51Z",
58-
"nvd_published_at": null
62+
"nvd_published_at": "2026-05-26T21:16:39Z"
5963
}
6064
}

advisories/github-reviewed/2026/05/GHSA-gphh-9q3h-jgpp/GHSA-gphh-9q3h-jgpp.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-gphh-9q3h-jgpp",
4-
"modified": "2026-05-08T20:36:22Z",
4+
"modified": "2026-06-08T23:29:16Z",
55
"published": "2026-05-08T20:36:22Z",
66
"aliases": [
77
"CVE-2026-44209"
@@ -43,6 +43,10 @@
4343
"type": "WEB",
4444
"url": "https://github.com/masci/banks/security/advisories/GHSA-gphh-9q3h-jgpp"
4545
},
46+
{
47+
"type": "ADVISORY",
48+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44209"
49+
},
4650
{
4751
"type": "WEB",
4852
"url": "https://github.com/masci/banks/pull/74"
@@ -59,6 +63,6 @@
5963
"severity": "HIGH",
6064
"github_reviewed": true,
6165
"github_reviewed_at": "2026-05-08T20:36:22Z",
62-
"nvd_published_at": null
66+
"nvd_published_at": "2026-05-26T21:16:37Z"
6367
}
6468
}

0 commit comments

Comments
 (0)