GHSA-hqmp-g7ph-x543: TunnelVision - decloaking VPNs using DHCP

GHSA-j5vv-6wjg-cfr8: changedetection.io Vulnerable to Improper Input Validation Leading to LFR/Path Traversal

GHSA-qx95-cwh6-9mvq: TCPDF missing character escape on error messages

GHSA-w95c-7994-ghpr: TCPDF has incorrect comparison

GHSA-4p8j-vhjm-6pvw: TCPDF lacks SVG sanitization

An issue in the Pickle Python library of NASA AIT-Core v2.5.2 allows attackers to execute arbitrary commands.

**NASA AIT-Core vulnerable to remote code execution**

Critical severity GitHub Reviewed Published May 21, 2024 to the GitHub Advisory Database • Updated May 22, 2024

Headline

GHSA-jqff-8g2v-642h: NASA AIT-Core vulnerable to remote code execution

ghsa: Latest News