**GitHub 安全公告(GHSA)** 是针对易受攻击的开源包与生态(如 npm、PyPI、Maven)的权威通告,通常关联 **CVE**。 使用搜索框查找 GHSA 或 CVE,按生态或严重度筛选,或在摘要中匹配短语。
| GHSA | CVE | 严重度 | 类型 | 摘要 | 公开时间 |
|---|---|---|---|---|---|
| GHSA-wx3m-whqv-xv47 | — | high | reviewed | skillctl: Path traversal and symlink-follow in skillctl allow arbitrary file disclosure and deletion | 2026-06-05 19:43:51 UTC |
| GHSA-j39p-jf99-v5w8 | CVE-2026-50733 | high | unreviewed | Markdown Preview Enhanced before 0.8.28 parses WaveDrom diagrams by evaluating untrusted markdown... | 2026-06-05 18:31:41 UTC |
| GHSA-2r75-cxrj-cmph | CVE-2026-47261 | high | reviewed | wasmtime-wasi: WASI path_open(TRUNCATE) bypasses `FilePerms::WRITE` host restriction | 2026-06-05 15:47:02 UTC |
| GHSA-jqx5-hg9f-r3hf | CVE-2026-11297 | high | unreviewed | Insufficient validation of untrusted input in Reader Mode in Google Chrome on Android prior to... | 2026-06-05 00:31:55 UTC |
| GHSA-5jwx-m54q-488f | CVE-2026-11286 | medium | unreviewed | Insufficient validation of untrusted input in Wallet in Google Chrome prior to 149.0.7827.53... | 2026-06-05 00:31:55 UTC |
| GHSA-wgh9-28v2-8v35 | CVE-2026-11272 | high | unreviewed | Insufficient validation of untrusted input in Reading List in Google Chrome on iOS prior to 149.0... | 2026-06-05 00:31:54 UTC |
| GHSA-rg8m-36hp-4ghf | CVE-2026-11283 | medium | unreviewed | Insufficient validation of untrusted input in Shortcuts in Google Chrome on Mac prior to 149.0... | 2026-06-05 00:31:54 UTC |
| GHSA-73fj-mp7h-8c8w | CVE-2026-11273 | medium | unreviewed | Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 149.0.7827.53... | 2026-06-05 00:31:54 UTC |
| GHSA-q633-h8hg-5mvc | CVE-2026-11246 | medium | unreviewed | Insufficient validation of untrusted input in IndexedDB in Google Chrome prior to 149.0.7827.53... | 2026-06-05 00:31:53 UTC |
| GHSA-h83c-wr7v-rr3x | CVE-2026-11259 | medium | unreviewed | Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53... | 2026-06-05 00:31:53 UTC |
| GHSA-fxqm-4w5x-3wrq | CVE-2026-11255 | high | unreviewed | Insufficient validation of untrusted input in Storage Access API in Google Chrome prior to 149.0... | 2026-06-05 00:31:53 UTC |
| GHSA-q6p3-5hc9-mj6w | CVE-2026-11244 | low | unreviewed | Insufficient validation of untrusted input in WebAuthentication in Google Chrome prior to 149.0... | 2026-06-05 00:31:52 UTC |
| GHSA-p2fc-jrv5-w4xq | CVE-2026-11237 | high | unreviewed | Insufficient validation of untrusted input in Media in Google Chrome prior to 149.0.7827.53... | 2026-06-05 00:31:52 UTC |
| GHSA-h7j5-3779-2jpx | CVE-2026-11241 | high | unreviewed | Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53... | 2026-06-05 00:31:52 UTC |
| GHSA-6mv5-742f-xf8v | CVE-2026-11240 | low | unreviewed | Insufficient validation of untrusted input in Loader in Google Chrome prior to 149.0.7827.53... | 2026-06-05 00:31:52 UTC |
| GHSA-4586-rwvx-3g6j | CVE-2026-11242 | high | unreviewed | Insufficient validation of untrusted input in Plugins in Google Chrome prior to 149.0.7827.53... | 2026-06-05 00:31:52 UTC |
| GHSA-x7hm-96xq-g364 | CVE-2026-11207 | critical | unreviewed | Insufficient validation of untrusted input in Autofill in Google Chrome prior to 149.0.7827.53... | 2026-06-05 00:31:51 UTC |
| GHSA-w78w-pw3g-jj3f | CVE-2026-11205 | medium | unreviewed | Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 149... | 2026-06-05 00:31:51 UTC |
| GHSA-qxmv-95v4-9qpr | CVE-2026-11220 | medium | unreviewed | Insufficient validation of untrusted input in Navigation in Google Chrome prior to 149.0.7827.53... | 2026-06-05 00:31:51 UTC |
| GHSA-jp3q-3vh2-xf59 | CVE-2026-11223 | medium | unreviewed | Insufficient validation of untrusted input in Network in Google Chrome prior to 149.0.7827.53... | 2026-06-05 00:31:51 UTC |