Publish Advisories

GHSA-25g8-2mcf-fcx9
GHSA-59g6-v3vg-f7wc
GHSA-6fmw-82m7-jq6p
GHSA-6v53-7c9g-w56r
GHSA-7rp8-r62p-q6wc
GHSA-7wc2-qxgw-g8gg
GHSA-8whx-v8qq-pq64
GHSA-95fj-3w7g-4r27
GHSA-9j26-99jh-v26q
GHSA-9m86-7pmv-2852
GHSA-jqwg-75qf-vmf9
GHSA-vmwq-8g8c-jm79

Author: advisory-database[bot]

advisories/github-reviewed/2026/03/GHSA-25g8-2mcf-fcx9/GHSA-25g8-2mcf-fcx9.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-25g8-2mcf-fcx9",
-  "modified": "2026-03-04T21:28:42Z",
+  "modified": "2026-03-06T21:57:22Z",
   "published": "2026-03-04T21:28:42Z",
   "aliases": [
     "CVE-2026-29065"
@@ -43,6 +43,10 @@
       "type": "WEB",
       "url": "https://github.com/dgtlmoon/changedetection.io/security/advisories/GHSA-25g8-2mcf-fcx9"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29065"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/dgtlmoon/changedetection.io/commit/1d7d812eb0faab37042246e2fbce04f29bb1b3aa"
@@ -63,6 +67,6 @@
     "severity": "HIGH",
     "github_reviewed": true,
     "github_reviewed_at": "2026-03-04T21:28:42Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-03-06T07:16:02Z"
   }
 }

advisories/github-reviewed/2026/03/GHSA-59g6-v3vg-f7wc/GHSA-59g6-v3vg-f7wc.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-59g6-v3vg-f7wc",
-  "modified": "2026-03-02T21:58:00Z",
+  "modified": "2026-03-06T21:56:32Z",
   "published": "2026-03-02T20:27:48Z",
   "aliases": [
     "CVE-2026-28438"
@@ -40,6 +40,10 @@
       "type": "WEB",
       "url": "https://github.com/cocoindex-io/cocoindex/security/advisories/GHSA-59g6-v3vg-f7wc"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28438"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/cocoindex-io/cocoindex/commit/ba2fc4a89e22d35572c64bd2990737c7913b0729"
@@ -56,6 +60,6 @@
     "severity": "HIGH",
     "github_reviewed": true,
     "github_reviewed_at": "2026-03-02T20:27:48Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-03-06T07:15:58Z"
   }
 }

advisories/github-reviewed/2026/03/GHSA-6fmw-82m7-jq6p/GHSA-6fmw-82m7-jq6p.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-6fmw-82m7-jq6p",
-  "modified": "2026-03-04T20:59:35Z",
+  "modified": "2026-03-06T21:57:13Z",
   "published": "2026-03-04T20:59:35Z",
   "aliases": [
     "CVE-2026-29039"
@@ -43,6 +43,10 @@
       "type": "WEB",
       "url": "https://github.com/dgtlmoon/changedetection.io/security/advisories/GHSA-6fmw-82m7-jq6p"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29039"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/dgtlmoon/changedetection.io/commit/417d57e5749441e4be9acc4010369bded805d66f"
@@ -63,6 +67,6 @@
     "severity": "HIGH",
     "github_reviewed": true,
     "github_reviewed_at": "2026-03-04T20:59:35Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-03-06T07:16:01Z"
   }
 }

advisories/github-reviewed/2026/03/GHSA-6v53-7c9g-w56r/GHSA-6v53-7c9g-w56r.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-6v53-7c9g-w56r",
-  "modified": "2026-03-04T21:23:45Z",
+  "modified": "2026-03-06T21:58:00Z",
   "published": "2026-03-04T21:23:45Z",
   "aliases": [
     "CVE-2026-29062"
@@ -48,6 +48,10 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52999"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29062"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/FasterXML/jackson-core/pull/1554"
@@ -62,10 +66,12 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-770"
+    ],
     "severity": "HIGH",
     "github_reviewed": true,
     "github_reviewed_at": "2026-03-04T21:23:45Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-03-06T08:16:26Z"
   }
 }

advisories/github-reviewed/2026/03/GHSA-7rp8-r62p-q6wc/GHSA-7rp8-r62p-q6wc.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-7rp8-r62p-q6wc",
-  "modified": "2026-03-04T01:59:38Z",
+  "modified": "2026-03-06T21:56:45Z",
   "published": "2026-03-02T22:04:23Z",
   "aliases": [
     "CVE-2026-29049"
@@ -40,6 +40,10 @@
       "type": "WEB",
       "url": "https://github.com/chainguard-dev/melange/security/advisories/GHSA-7rp8-r62p-q6wc"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29049"
+    },
     {
       "type": "PACKAGE",
       "url": "https://github.com/chainguard-dev/melange"
@@ -53,6 +57,6 @@
     "severity": "MODERATE",
     "github_reviewed": true,
     "github_reviewed_at": "2026-03-02T22:04:23Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-03-06T07:16:02Z"
   }
 }

advisories/github-reviewed/2026/03/GHSA-7wc2-qxgw-g8gg/GHSA-7wc2-qxgw-g8gg.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-7wc2-qxgw-g8gg",
-  "modified": "2026-03-04T20:55:47Z",
+  "modified": "2026-03-06T21:56:55Z",
   "published": "2026-03-04T20:55:47Z",
   "aliases": [
     "CVE-2026-28802"
@@ -43,6 +43,10 @@
       "type": "WEB",
       "url": "https://github.com/authlib/authlib/security/advisories/GHSA-7wc2-qxgw-g8gg"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28802"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/authlib/authlib/commit/a61c2acb807496e67f32051b5f1b1d5ccf8f0a75"
@@ -63,6 +67,6 @@
     "severity": "HIGH",
     "github_reviewed": true,
     "github_reviewed_at": "2026-03-04T20:55:47Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-03-06T07:16:01Z"
   }
 }

advisories/github-reviewed/2026/03/GHSA-8whx-v8qq-pq64/GHSA-8whx-v8qq-pq64.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-8whx-v8qq-pq64",
-  "modified": "2026-03-04T20:58:14Z",
+  "modified": "2026-03-06T21:57:09Z",
   "published": "2026-03-04T20:58:14Z",
   "aliases": [
     "CVE-2026-29038"
@@ -44,6 +44,10 @@
       "type": "WEB",
       "url": "https://github.com/dgtlmoon/changedetection.io/security/advisories/GHSA-mw8m-398g-h89w"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29038"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/dgtlmoon/changedetection.io/commit/ec7d56f85d1e9690fca7cb4711c1fb20dffec780"
@@ -64,6 +68,6 @@
     "severity": "MODERATE",
     "github_reviewed": true,
     "github_reviewed_at": "2026-03-04T20:58:14Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-03-06T07:16:01Z"
   }
 }

advisories/github-reviewed/2026/03/GHSA-95fj-3w7g-4r27/GHSA-95fj-3w7g-4r27.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-95fj-3w7g-4r27",
-  "modified": "2026-03-04T21:05:51Z",
+  "modified": "2026-03-06T21:57:17Z",
   "published": "2026-03-04T21:05:51Z",
   "aliases": [
     "CVE-2026-29042"
@@ -43,6 +43,10 @@
       "type": "WEB",
       "url": "https://github.com/nuclio/nuclio/security/advisories/GHSA-95fj-3w7g-4r27"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29042"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/nuclio/nuclio/pull/4030"
@@ -67,6 +71,6 @@
     "severity": "HIGH",
     "github_reviewed": true,
     "github_reviewed_at": "2026-03-04T21:05:51Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-03-06T07:16:01Z"
   }
 }

advisories/github-reviewed/2026/03/GHSA-9j26-99jh-v26q/GHSA-9j26-99jh-v26q.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-9j26-99jh-v26q",
-  "modified": "2026-03-04T01:59:45Z",
+  "modified": "2026-03-06T21:56:49Z",
   "published": "2026-03-03T20:02:40Z",
   "aliases": [
     "CVE-2026-29058"
@@ -40,6 +40,10 @@
       "type": "WEB",
       "url": "https://github.com/WWBN/AVideo-Encoder/security/advisories/GHSA-9j26-99jh-v26q"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29058"
+    },
     {
       "type": "PACKAGE",
       "url": "https://github.com/WWBN/AVideo-Encoder"
@@ -52,6 +56,6 @@
     "severity": "CRITICAL",
     "github_reviewed": true,
     "github_reviewed_at": "2026-03-03T20:02:40Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-03-06T07:16:02Z"
   }
 }

advisories/github-reviewed/2026/03/GHSA-9m86-7pmv-2852/GHSA-9m86-7pmv-2852.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-9m86-7pmv-2852",
-  "modified": "2026-03-04T01:58:29Z",
+  "modified": "2026-03-06T21:56:41Z",
   "published": "2026-03-02T22:03:45Z",
   "aliases": [
     "CVE-2026-28804"
@@ -40,10 +40,18 @@
       "type": "WEB",
       "url": "https://github.com/py-pdf/pypdf/security/advisories/GHSA-9m86-7pmv-2852"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28804"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/py-pdf/pypdf/pull/3666"
     },
+    {
+      "type": "WEB",
+      "url": "https://github.com/py-pdf/pypdf/commit/648c627d2657447dfb1773412af05a0a5103b98f"
+    },
     {
       "type": "PACKAGE",
       "url": "https://github.com/py-pdf/pypdf"
@@ -60,6 +68,6 @@
     "severity": "MODERATE",
     "github_reviewed": true,
     "github_reviewed_at": "2026-03-02T22:03:45Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-03-06T07:16:01Z"
   }
 }