Every1's a fraud 'cuz they pick & choose what they show. • gh-ost is a triggerless online schema migration solution for MySQL. Versions prior to 1.1.3 are subject to an arbitrary file read vulnerability.
Read more ⟶ • node-windows package before 1.0.0-beta.6 for Node.js allows command injection via the PID parameter.
Read more ⟶ • calibre before 5.32.0 contains a regular expression that is vulnerable to ReDoS (Regular Expression Denial of Service).
Read more ⟶ • Git-it through 4.4.0 allows OS command injection.
Read more ⟶ • github-todos 3.1.0 is vulnerable to command injection.
Read more ⟶