GHSA-3329-ghmp-jmv5: Picklescan is vulnerable to RCE through missing detection when calling numpy.f2py.crackfortran.myeval

GHSA-x843-g5mx-g377: Picklescan is vulnerable to RCE through missing detection when calling built-in python operator.methodcaller

GHSA-r8g5-cgf2-4m4m: Picklescan missing detection when calling numpy.f2py.crackfortran.getlincoef

GHSA-hgrh-qx5j-jfwx: Picklescan Bypasses Unsafe Globals Check using pty.spawn

GHSA-vqmv-47xg-9wpr: Picklescan missing detection when calling pty.spawn

GJSON < 1.6.6 allows attackers to cause a denial of service (panic: runtime error: slice bounds out of range) via a crafted GET call.

**Improper Validation of Array Index in GJSON**

High severity GitHub Reviewed Published Feb 6, 2023 to the GitHub Advisory Database • Updated Feb 6, 2023

Headline

GHSA-p64j-r5f4-pwwx: Improper Validation of Array Index in GJSON

ghsa: Latest News