| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-30115 | curl 安全漏洞 | - | https://github.com/curl/curl | 中危 | - | 2022-06-01 00:00:00 | Deep Dive |
| CVE-2022-29220 | No verification of commits origin in github-action-merge-dependabot | fastify | github-action-merge-dependabot | Medium | 6.5 | 2022-05-31 16:10:10 | Deep Dive |
| CVE-2022-21831 | Ruby on Rails 代码注入漏洞 | - | https://github.com/rails/rails | 超危 | - | 2022-05-26 00:00:00 | Deep Dive |
| CVE-2022-22576 | curl 访问控制错误漏洞 | - | https://github.com/curl/curl | 高危 | - | 2022-05-26 00:00:00 | Deep Dive |
| CVE-2022-22577 | Rails Action Pack 跨站脚本漏洞 | - | https://github.com/rails/rails | 中危 | - | 2022-05-26 00:00:00 | Deep Dive |
| CVE-2022-27777 | Action View tag helpers 跨站脚本漏洞 | - | https://github.com/rails/rails | 中危 | - | 2022-05-26 00:00:00 | Deep Dive |
| CVE-2022-25850 | Server-side Request Forgery (SSRF) | - | github.com/hoppscotch/proxyscotch | High | 7.5 | 2022-05-01 15:20:10 | Deep Dive |
| CVE-2022-23732 | Path traversal in GitHub Enterprise Server management console leading to a bypass of CSRF protections | GitHub | GitHub Enterprise Server | 高危 | - | 2022-04-05 00:10:11 | Deep Dive |
| CVE-2022-21235 | Command Injection | - | github.com/Masterminds/vcs | High | 8.1 | 2022-04-01 15:55:11 | Deep Dive |
| CVE-2022-21221 | Directory Traversal | - | github.com/valyala/fasthttp | Medium | 5.9 | 2022-03-17 11:21:09 | Deep Dive |
| CVE-2022-24724 | Integer overflow in table parsing extension leads to heap memory corruption | github | cmark-gfm | High | 8.8 | 2022-03-03 19:35:09 | Deep Dive |
| CVE-2022-24722 | Cross-site Scripting in view_component | github | view_component | High | 8.1 | 2022-03-02 22:40:11 | Deep Dive |
| CVE-2021-41599 | Improper control flow in GitHub Enterprise Server hosted Pages leads to remote code execution | GitHub | GitHub Enterprise Server | 高危 | - | 2022-02-17 23:35:12 | Deep Dive |
| CVE-2021-22954 | Concrete Cms 跨站请求伪造漏洞 | - | https://github.com/concrete5/concrete5 | 高危 | - | 2022-02-09 22:05:55 | Deep Dive |
| CVE-2021-41598 | UI misrepresentation of granted permissions in GitHub Enterprise Server leading to unauthorized access to user | GitHub | GitHub Enterprise Server | 高危 | - | 2022-01-25 19:45:12 | Deep Dive |
| CVE-2021-44528 | Rails Action Pack 输入验证错误漏洞 | - | https://github.com/rails/rails | 中危 | - | 2022-01-07 00:00:00 | Deep Dive |
| CVE-2021-23772 | Arbitrary File Write | - | github.com/kataras/iris | High | 7.5 | 2021-12-24 12:05:15 | Deep Dive |
| CVE-2021-22968 | PortlandLabs Concrete CMS 代码问题漏洞 | - | https://github.com/concrete5/concrete5 | 高危 | - | 2021-11-19 18:11:35 | Deep Dive |
| CVE-2021-22967 | PortlandLabs Concrete CMS 安全漏洞 | - | https://github.com/concrete5/concrete5 | 高危 | - | 2021-11-19 18:11:07 | Deep Dive |
| CVE-2021-22951 | PortlandLabs Concrete CMS 安全漏洞 | - | https://github.com/concrete5/concrete5 | 高危 | - | 2021-11-19 18:10:14 | Deep Dive |