actions Summary

Latest vulnerabilities published by actions

9 June 2025

5 May 2025

15 March 2025

10 December 2024

16 October 2024

2 September 2024

4 June 2024

29 December 2023

27 December 2023

5 December 2023

25 October 2022

15 August 2022

30 November 2021

7 September 2021

16 October 2020

1 October 2020

29 April 2020

No more vulnerabilities to load.

actions Summary

Vulnerability Published:

Sort By:

9 June 2025

Inefficient Regular Expression Complexity in Actions Toolkit Glob by GitHub

5 May 2025

Access Control Flaw in Shiro-Action Affects Sensitive Information Exposure

15 March 2025

Remote Code Execution Vulnerability in tj-actions changed-files by GitHub

10 December 2024

Possible XSS Vulnerability in Action Pack CSP Helper

16 October 2024

Possible ReDoS Vulnerability in Action Text's 'plain_text_for_blockquote_node' Helper in Rails

2 September 2024

Arbitrary File Write Vulnerability in GitHub Actions

4 June 2024

Unsanitized HTML in Rich Text Area Could Lead to Code Execution

29 December 2023

GitHub Action tj-actions/verify-changed-files is vulnerable to command injection in output filenames

27 December 2023

tj-actions/changed-files command injection in output filenames

5 December 2023

Improper Sanitization of Branch Name Leads to Arbitrary Code Injection

25 October 2022

GitHub Actions Runner vulnerable to Docker Command Escaping

15 August 2022

Delimiter injection vulnerability in @actions/core exportVariable

30 November 2021

Denial of Service Vulnerability in Actions ATS2815 Bluetooth Chipsets

7 September 2021

Denial of Service in Bluetooth Classic on Actions ATS2815 and ATS2819 Chipsets

Bluetooth Classic Audio Disconnection Vulnerability in Actions Devices

16 October 2020

Credential Exposure in EZCast Pro II from Digital Security

1 October 2020

Environment Variable Injection in GitHub Actions

29 April 2020

HTTP request which redirect to another hostname do not strip authorization header in Actions Http-Client