Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
70
GitHub Actions
52
Go
3,904
Maven
5,000+
npm
5,000+
NuGet
967
pip
5,000+
Pub
13
RubyGems
1,062
Rust
1,374
Swift
54
Unreviewed advisories
All unreviewed
5,000+

231 advisories

Loading
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in... Low Unreviewed
CVE-2024-47267 was published May 27, 2026
A flaw has been found in dazeb markdown-downloader up to 3d4394b34b6c99d81af817623af55e3384df5a6a... Low Unreviewed
CVE-2026-9472 was published May 26, 2026
A vulnerability has been found in c-rick jimeng-mcp 1.10.0. Affected by this vulnerability is the... Low Unreviewed
CVE-2026-9473 was published May 26, 2026
A vulnerability was identified in debugmcp mcp-debugger up to 0.20.0. Impacted is the function... Low Unreviewed
CVE-2026-9467 was published May 26, 2026
A security flaw has been discovered in dazeb cline-mcp-memory-bank up to... Low Unreviewed
CVE-2026-9468 was published May 26, 2026
androidqf: APK download Path Traversal in device APK paths Low
GHSA-763j-3p5v-jfc6 was published for github.com/mvt-project/androidqf (Go) May 21, 2026
androidqf: Zip entry Name Injection in APK bundle (Zip Slip for zip consumers) Low
GHSA-jf2q-463c-6f52 was published for github.com/mvt-project/androidqf (Go) May 21, 2026
A vulnerability was identified in continuedev continue up to 1.2.22. This affects the function... Low Unreviewed
CVE-2026-8770 was published May 18, 2026
A vulnerability was detected in Kilo-Org kilocode up to 7.0.47. This vulnerability affects the... Low Unreviewed
CVE-2026-8765 was published May 18, 2026
AstrBot: File upload vulnerability in the function post_file of the file astrbot/dashboard/routes/chat.py Low
CVE-2026-8754 was published for AstrBot (pip) May 17, 2026
A security flaw has been discovered in Oinone Pamirs up to 7.2.0. This vulnerability affects the... Low Unreviewed
CVE-2026-8736 was published May 17, 2026
A security vulnerability has been detected in npitre cramfs-tools up to 2.1. Affected is the... Low Unreviewed
CVE-2026-8274 was published May 11, 2026
A weakness has been identified in huangjunsen0406 xiaozhi-mcphub up to 1.0.3. This vulnerability... Low Unreviewed
CVE-2026-8116 was published May 8, 2026
A vulnerability was determined in 8421bit MiniClaw up to 43905b934cf76489ab28e4d17da28ee97970f91f... Low Unreviewed
CVE-2026-8113 was published May 8, 2026
Magic Wormhole: receive, with --output pointing at an existing directory can be path-traversed Low
CVE-2026-42448 was published for magic-wormhole (pip) May 6, 2026
@puchunjie/doc-tools-mcp has a Path Traversal Issue Low
CVE-2026-7738 was published for @puchunjie/doc-tools-mcp (npm) May 4, 2026
A vulnerability was identified in ryanjoachim mcp-rtfm 0.1.0. This vulnerability affects the... Low Unreviewed
CVE-2026-7728 was published May 4, 2026
A vulnerability has been found in ravenwits mcp-server-arangodb up to 0.4.7. This affects the... Low Unreviewed
CVE-2026-7715 was published May 4, 2026
A vulnerability has been found in AV Stumpfl Pixera Two Media Server up to 25.1 R2. The affected... Low Unreviewed
CVE-2026-7704 was published May 3, 2026
A weakness has been identified in jsbroks COCO Annotator up to 0.11.1. Affected is an unknown... Low Unreviewed
CVE-2026-7680 was published May 3, 2026
A vulnerability was found in kerwincui FastBee up to 1.2.1. The affected element is the function... Low Unreviewed
CVE-2026-7676 was published May 3, 2026
A security vulnerability has been detected in 8nite metatrader-4-mcp 1.0.0. This vulnerability... Low Unreviewed
CVE-2026-7627 was published May 2, 2026
A vulnerability was detected in Dayoooun hwpx-mcp 0.2.0. This affects the function save_document... Low Unreviewed
CVE-2026-7599 was published May 2, 2026
A security vulnerability has been detected in ZachHandley ZMCPTools up to 0.2.2. Affected by this... Low Unreviewed
CVE-2026-7445 was published Apr 30, 2026
A vulnerability was determined in HBAI-Ltd Toonflow-app up to 1.1.1. This vulnerability affects... Low Unreviewed
CVE-2026-7085 was published Apr 27, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database