GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,295
Maven
5,000+
npm
5,000+
NuGet
1,029
pip
5,000+
Pub
13
RubyGems
1,107
Rust
1,492
Swift
61
Unreviewed advisories
All unreviewed
5,000+
5,685 advisories
Filter by severity
Open WebUI vulnerable to Stored XSS via iFrame in citations model
High
CVE-2026-26192
was published
for
open-webui
(pip)
Jul 7, 2026
Open WebUI vulnerable to stored XSS via unescaped markdown token in MarkdownTokens.svelte leading to full account takeover and RCE via functions
High
CVE-2025-46719
was published
for
open-webui
(pip)
Jul 7, 2026
Open WebUI allows limited stored XSS vila uploaded html file
Moderate
CVE-2025-46571
was published
for
open-webui
(pip)
Jul 7, 2026
ONNX has Null Pointer Dereference in Upsample Version Converter Adapter (Zero Inputs)
Moderate
CVE-2026-44512
was published
for
onnx
(pip)
Jul 7, 2026
Kiwi TCMS vulnerable to stored XSS via JavaScript: URI in extra_link field (TestPlan & TestCase)
Low
CVE-2026-55630
was published
for
kiwitcms
(pip)
Jul 6, 2026
Kiwi TCMS has an Open Redirect via unvalidated next parameter in account confirmation endpoint
Moderate
CVE-2026-54724
was published
for
kiwitcms
(pip)
Jul 6, 2026
Langroid: Neo4jChatAgent executes LLM-generated Cypher without validation (prompt-to-Cypher injection; config-conditional RCE), mirroring the SQLChatAgent bug fixed in CVE-2026-25879
Critical
CVE-2026-55615
was published
for
langroid
(pip)
Jul 6, 2026
Linuxfabrik Monitoring Plugins have local privilege escalation using embedded command
High
CVE-2026-55426
was published
for
linuxfabrik-lib
(pip)
Jul 6, 2026
Langroid: handle_message() executes user-supplied tool JSON without sender verification
High
CVE-2026-54771
was published
for
langroid
(pip)
Jul 6, 2026
Langroid: Sandbox Escape to Remote Code Execution via Incomplete `eval()` Mitigation in TableChatAgent
Critical
CVE-2026-54769
was published
for
langroid
(pip)
Jul 6, 2026
Langroid: SQLChatAgent dangerous-function blocklist can be bypassed with quoted or schema-qualified pg_read_file calls
Critical
CVE-2026-54760
was published
for
langroid
(pip)
Jul 6, 2026
Linuxfabrik Monitoring Plugins allow insecure creation of SQLite databases
Low
CVE-2026-53759
was published
for
linuxfabrik-lib
(pip)
Jul 6, 2026
flyto-core has Unauthenticated Command Execution via HTTP MCP `execute_module`
High
CVE-2026-55786
was published
for
flyto-core
(pip)
Jul 6, 2026
flyto-core has SSRF guard bypass via IPv6 transition addresses (IPv4-mapped / 6to4 / NAT64) in validate_url_ssrf
High
CVE-2026-55787
was published
for
flyto-core
(pip)
Jul 6, 2026
WeasyPrint has CSS Injection via Presentational Hints
Moderate
CVE-2026-49452
was published
for
weasyprint
(pip)
Jul 6, 2026
Open Babel has out-of-bounds write in MOPAC translationVectors[] (UNIT CELL TRANSLATION)
High
CVE-2022-46292
was published
for
openbabel
(pip)
Jul 6, 2026
Recce server has unauthenticated SQL execution that allows local file read/write through DuckDB
High
CVE-2026-49360
was published
for
recce
(pip)
Jul 2, 2026
Kiwi TCMS's /init-db/ page renders and responds to requests after first use
Low
CVE-2026-49292
was published
for
kiwitcms
(pip)
Jul 2, 2026
fast-mcp-telegram: Bearer token path traversal bypasses reserved Telegram session protection
Critical
CVE-2026-52830
was published
for
fast-mcp-telegram
(pip)
Jul 2, 2026
Linuxfabrik Monitoring Plugins: Sudoers may be able to obtain privilege escalation via /usr/bin/apt-get arguments
High
CVE-2026-52817
was published
for
linuxfabrik-lib
(pip)
Jul 2, 2026
joserfc: HS256/HS384/HS512 verify accepts empty/nil HMAC key (cross-language sibling of CVE-2026-45363)
High
CVE-2026-49852
was published
for
joserfc
(pip)
Jul 2, 2026
Dulwich's submodule path traversal in porcelain.submodule_update / porcelain.clone(recurse_submodules=True) yields RCE via attacker-dropped .git/hooks payload
High
CVE-2026-52726
was published
for
dulwich
(pip)
Jul 2, 2026
Langroid: SQLChatAgent _validate_query blocklist misses pg_read_file family enabling arbitrary file read
High
CVE-2026-50180
was published
for
langroid
(pip)
Jul 2, 2026
Langroid: Path traversal in the file tools allows read/write outside configured current directory
High
CVE-2026-50181
was published
for
langroid
(pip)
Jul 2, 2026
mcp-memory-service: Missing Authentication on Document API Endpoints Allows Unauthenticated Memory Read/Write/Delete
Critical
CVE-2026-50027
was published
for
mcp-memory-service
(pip)
Jul 2, 2026
ProTip!
Advisories are also available from the
GraphQL API