GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
5 advisories
Open WebUI has XSS via SVG in /api/v1/channels/webhooks/{webhook_id}/profile/image
High
CVE-2026-45314
was published
for
open-webui
(pip)
May 14, 2026
n8n Vulnerable to Hijacking of Unauthenticated Chat Execution
Moderate
CVE-2026-42228
was published
for
n8n
(npm)
Apr 29, 2026
Storybook Dev Server is Vulnerable to WebSocket Hijacking
High
CVE-2026-27148
was published
for
storybook
(npm)
Feb 26, 2026
Astro has Full-Read SSRF in error rendering via Host: header injection
Moderate
CVE-2026-25545
was published
for
@astrojs/node
(npm)
Feb 23, 2026
Prevent XSS from Confidant API call
Moderate
CVE-2024-45793
was published
for
confidant
(pip)
Sep 20, 2024
ProTip!
Advisories are also available from the
GraphQL API