GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
1,983 advisories
LangChain vulnerable to unsafe deserialization of attacker-controlled objects through overly broad `load()` allowlists
High
CVE-2026-44843
was published
for
langchain-core
(pip)
May 8, 2026
Open WebUI Vulnerable to Arbitrary File Upload and Path Traversal
High
CVE-2026-44566
was published
for
open-webui
(pip)
May 8, 2026
Open WebUI has Improper Authorization Control
High
CVE-2026-44567
was published
for
open-webui
(pip)
May 8, 2026
Open WebUI has stored XSS in Excel file preview
High
CVE-2026-44549
was published
for
open-webui
(pip)
May 8, 2026
banks has Critical Remote Code Execution (RCE) via Jinja2 SSTI
High
CVE-2026-44209
was published
for
banks
(pip)
May 8, 2026
Open WebUI has Knowledge Base Destruction and RAG Poisoning via Unauthorized Collection Overwrite
High
CVE-2026-44554
was published
for
open-webui
(pip)
May 8, 2026
Open WebUI's responses passthrough endpoint lacks access control authorization
High
CVE-2026-44556
was published
for
open-webui
(pip)
May 8, 2026
Open WebUI's Base Model Routing Bypasses Access Control via Model Chaining
High
CVE-2026-44555
was published
for
open-webui
(pip)
May 8, 2026
Open WebUI: Redis Cache Keys tool_servers and terminal_servers Missing Instance Prefix Enable Cross-Instance Cache Poisoning
High
CVE-2026-44552
was published
for
open-webui
(pip)
May 8, 2026
Open WebUI: Stale Admin Role in Socket.IO Session Pool Enables Post-Demotion Cross-User Note Access
High
CVE-2026-44553
was published
for
open-webui
(pip)
May 8, 2026
open-webui Vulnerable to Stored XSS via Model Description
High
CVE-2026-44721
was published
for
open-webui
(npm)
May 8, 2026
netbox-data-flows has stored XSS in ObjectAlias names rendered inside DataFlow tables
High
GHSA-v7qw-hx66-4w9x
was published
for
netbox-data-flows
(pip)
May 7, 2026
Microsoft APM CLI's plugin.json component paths escape plugin root and copy arbitrary host files during install
High
CVE-2026-44641
was published
for
apm-cli
(pip)
May 7, 2026
Diffusers has a `trust_remote_code` bypass via `custom_pipeline` and local custom components
High
CVE-2026-44513
was published
for
diffusers
(pip)
May 7, 2026
Aegra has cross-user run injection in /threads/{thread_id}/runs (IDOR)
High
CVE-2026-44504
was published
for
aegra-api
(pip)
May 7, 2026
Kiota abstractions RedirectHandler leaks Cookie/Proxy-Authorization headers on cross-host redirect
High
CVE-2026-44503
was published
for
Microsoft.Kiota.Abstractions
(Go)
May 7, 2026
Keras vulnerable to DoS via Malicious .keras Model (HDF5 Shape Bomb Causes Petabyte Allocation in KerasFileEditor)
High
CVE-2026-0897
was published
for
keras
(pip)
May 6, 2026
PraisonAI has unauthenticated RCE via `tool_override.py` (CVE-2026-40287 patch bypass)
High
CVE-2026-44334
was published
for
praisonai
(pip)
May 6, 2026
PraisonAI has an SSRF bypass
High
CVE-2026-44335
was published
for
praisonaiagents
(pip)
May 6, 2026
GitPython: Newline injection in config_writer().set_value() enables RCE via core.hooksPath
High
CVE-2026-44244
was published
for
GitPython
(pip)
May 6, 2026
python-multipart has Denial of Service via unbounded multipart part headers
High
CVE-2026-42561
was published
for
python-multipart
(pip)
May 6, 2026
ProTip!
Advisories are also available from the
GraphQL API