Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

14 advisories

Loading
Improper type usage in rusqlite Critical
CVE-2020-35872 was published for rusqlite (Rust) Aug 25, 2021
IBM Cognos Controller 11.0.0 and 11.0.1 could allow an authenticated user to upload... Moderate Unreviewed
CVE-2024-45676 was published Dec 3, 2024
jamietdavidson Credited to jamietdavidson, bellini666, and patrick91 bellini666 bellini666
patrick91 patrick91
An attacker can upload an arbitrary file instead of a plant image. Critical Unreviewed
CVE-2025-30510 was published Apr 16, 2025
TYPO3 Allows Unrestricted File Upload in File Abstraction Layer Moderate
CVE-2025-47939 was published for typo3/cms-core (Composer) May 20, 2025
0xHamy Credited to 0xHamy and ohader ohader ohader
io-no Credited to io-no
Contao is vulnerable to remote code execution in template closures Moderate
CVE-2025-65960 was published for contao/core-bundle (Composer) Nov 25, 2025
ausi Credited to ausi and m-vo m-vo m-vo
OpenClaw: Discord Component Interaction Misclassifies Group DM as Direct Message Low
CVE-2026-41341 was published for openclaw (npm) Apr 3, 2026
nexrin Credited to nexrin, KeenSecurityLab, and qclawer KeenSecurityLab KeenSecurityLab
qclawer qclawer
Duplicate Advisory: OpenClaw: Discord Component Interaction Misclassifies Group DM as Direct Message Low
GHSA-pr66-whqj-rq5p was published for openclaw (npm) Apr 24, 2026 withdrawn
Users were able to upload files with arbitrary MIME types to forms using FileUpload or... Moderate Unreviewed
CVE-2026-15305 was published Jul 14, 2026
ProTip! Advisories are also available from the GraphQL API