Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

4 advisories

Loading
Improper Request Caching Lookup in the Auth0 Next.js SDK Moderate
CVE-2025-67490 was published for @auth0/nextjs-auth0 (npm) Dec 10, 2025
MegaManSec Credited to MegaManSec
OpenClaw has a Matrix allowlist bypass via displayName and cross-homeserver localpart matching Moderate
CVE-2026-28471 was published for openclaw (npm) Feb 17, 2026
MegaManSec Credited to MegaManSec
OpenEXR has buffer overflow in PyOpenEXR_old's channels() and channel() Moderate
CVE-2025-64182 was published for OpenEXR (pip) Apr 6, 2026
MegaManSec Credited to MegaManSec
OpenEXR has use after free in PyObject_StealAttrString Moderate
CVE-2025-64183 was published for OpenEXR (pip) Apr 6, 2026
MegaManSec Credited to MegaManSec
ProTip! Advisories are also available from the GraphQL API