GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
92
GitHub Actions
54
Go
4,217
Maven
5,000+
npm
5,000+
NuGet
1,021
pip
5,000+
Pub
13
RubyGems
1,103
Rust
1,443
Swift
61
Unreviewed advisories
All unreviewed
5,000+
5,595 advisories
Filter by severity
Langroid has Prompt to SQL Injection, Leading to RCE
Critical
CVE-2026-25879
was published
for
langroid
(pip)
May 27, 2026
Langroid has WAF Bypass Leading to RCE in TableChatAgent
Critical
CVE-2026-25481
was published
for
langroid
(pip)
Feb 2, 2026
Langroid has a Code Injection vulnerability in TableChatAgent
Critical
CVE-2025-46724
was published
for
langroid
(pip)
May 20, 2025
pretix vulnerable to Authorization Bypass Through User-Controlled Key
Low
CVE-2026-9712
was published
for
pretix
(pip)
May 27, 2026
Gradio contains a cookie injection vulnerability
High
CVE-2026-48545
was published
for
gradio
(pip)
May 27, 2026
Taipy contains a path traversal vulnerability
High
CVE-2026-48544
was published
for
taipy
(pip)
May 27, 2026
Cortex has Untrusted Project Bootstrap Code Execution via `CLAUDE_PROJECT_DIR`
High
CVE-2026-49986
was published
for
neuro-cortex-memory
(pip)
Jul 1, 2026
GDAL: scanForGeometryContainers in the netCDF driver allows code execution via a stack-based buffer overflow
High
CVE-2026-49014
was published
for
gdal
(pip)
May 27, 2026
OpenStack Swift: s3api middleware enters an infinite loop when processing a truncated aws-chunked PUT request body
High
CVE-2026-49017
was published
for
swift
(pip)
May 27, 2026
HuggingFace transformers vulnerable to remote code execution
High
CVE-2026-4372
was published
for
transformers
(pip)
May 26, 2026
Open Babel has out-of-bounds write in MSI translationVectors[]
High
CVE-2022-46295
was published
for
openbabel
(pip)
Jul 1, 2026
Duplicate Advisory: Open Babel has out-of-bounds write in MSI translationVectors[]
Critical
GHSA-83c5-hghm-jg6r
was published
for
openbabel
(pip)
Jul 21, 2023
•
withdrawn
Open Babel has out-of-bounds write in MOPAC IN translationVectors[] (Tv atom)
High
CVE-2022-46294
was published
for
openbabel
(pip)
Jul 1, 2026
Duplicate Advisory: Open Babel has out-of-bounds write in MOPAC IN translationVectors[] (Tv atom)
Critical
GHSA-jrjj-9h77-6vhv
was published
for
openbabel
(pip)
Jul 21, 2023
•
withdrawn
Open Babel has out-of-bounds write in MOPAC translationVectors[] (FINAL POINT)
High
CVE-2022-46293
was published
for
openbabel
(pip)
Jul 1, 2026
Duplicate Advisory: Open Babel has out-of-bounds write in MOPAC translationVectors[] (FINAL POINT)
Critical
GHSA-4r3q-94wc-xhq9
was published
for
openbabel
(pip)
Jul 21, 2023
•
withdrawn
Open Babel has out-of-bounds write in Gaussian translationVectors[]
High
CVE-2022-46291
was published
for
openbabel
(pip)
Jul 1, 2026
Duplicate Advisory: Open Babel has out-of-bounds write in Gaussian translationVectors[]
Critical
GHSA-v5fw-q4pf-8p2h
was published
for
openbabel
(pip)
Jul 21, 2023
•
withdrawn
Open Babel has out-of-bounds write in ORCA nAtoms parser (second variant)
High
CVE-2022-46290
was published
for
openbabel
(pip)
Jul 1, 2026
Duplicate Advisory: Open Babel has out-of-bounds write in ORCA nAtoms parser (second variant)
Critical
GHSA-wj42-v2p3-fq2w
was published
for
openbabel
(pip)
Jul 21, 2023
•
withdrawn
Open Babel has out-of-bounds write in ORCA nAtoms parser
High
CVE-2022-46289
was published
for
openbabel
(pip)
Jul 1, 2026
Duplicate Advisory: Open Babel has out-of-bounds write in ORCA nAtoms parser
Critical
GHSA-g8f4-g673-rfw2
was published
for
openbabel
(pip)
Jul 21, 2023
•
withdrawn
Open Babel has uninitialized pointer dereference in PQS pFormat
High
CVE-2022-46280
was published
for
openbabel
(pip)
Jul 1, 2026
Duplicate Advisory: Open Babel has uninitialized pointer dereference in PQS pFormat
Critical
GHSA-7rcm-w6ff-j43w
was published
for
openbabel
(pip)
Jul 21, 2023
•
withdrawn
Duplicate Advisory: Open Babel has out-of-bounds write in MOL2 attribute/value parser
Critical
GHSA-x3cp-4x6w-vm7p
was published
for
openbabel
(pip)
Jul 21, 2023
•
withdrawn
ProTip!
Advisories are also available from the
GraphQL API