GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
4 advisories
FUXA's Unauthenticated Project Data Disclosure Exposes Server-Side Scripts and Device Configurations
High
CVE-2026-47717
was published
for
fuxa-server
(npm)
May 27, 2026
FUXA Vulnerable to Unauthenticated Remote Code Execution via Script Test Mode Authorization Bypass
High
CVE-2026-43947
was published
for
fuxa-server
(npm)
May 26, 2026
Caddy: Unicode case-folding length expansion causes incorrect split_path index in FastCGI transport
High
CVE-2026-27590
was published
for
github.com/caddyserver/caddy/v2
(Go)
Feb 24, 2026
FrankenPHP's unicode case-folding length expansion causes incorrect split_path index (SCRIPT_NAME/PATH_INFO confusion) in FrankenPHP
High
CVE-2026-24895
was published
for
github.com/dunglas/frankenphp
(Go)
Feb 12, 2026
ProTip!
Advisories are also available from the
GraphQL API