GitHub Security Advisories
Open-source package ecosystem coverage across npm / PyPI / Maven / Go / RubyGems and more.
15,677 advisories tracked · showing 100
- Jul 7, 2026GHSA-jj92-236g-5h8pMediumCVE-2026-57870
Broken object-level access control on the Template API in MicroRealEstate allows attackers to...
- Jul 7, 2026GHSA-2m7v-q2j4-mr6fMediumCVSS 4.3CVE-2026-58315
Cross-site request forgery vulnerability exists in SEIKO EPSON Web Config. If a user views a...
- Jul 7, 2026GHSA-qj2j-73pj-4fxfunknownCVE-2026-10834
The WP Travel Engine WordPress plugin before 6.8.1 does not properly validate the source of a...
- Jul 7, 2026GHSA-j5cw-4r7c-4vw8HighCVE-2026-57867
MicroRealEstate allows adversaries to bypass authentication due to a lack of token state...
- Jul 7, 2026GHSA-56qr-p95w-94vhHighCVE-2026-57871
Relative path traversal vulnerability in MicroRealEstate file upload functionality allows...
- Jul 7, 2026GHSA-3wm2-j8jq-jcw8unknownCVE-2026-4375
The DoLeads Integrator WordPress plugin through 0.65, wp2epub WordPress plugin through 0.65 have...
- Jul 7, 2026GHSA-5fwf-q2jf-gp4vCriticalCVSS 9.8CVE-2026-14345
The WPFunnels – Funnel Builder for WooCommerce with Checkout & One Click Upsell plugin for...
- Jul 7, 2026GHSA-wvw5-gh7q-m6w3unknownCVE-2026-12277
The Frontend File Manager Plugin WordPress plugin through 23.6 does not validate a file path...
- Jul 7, 2026GHSA-q763-mg7g-9g46unknownCVE-2026-12375
The uncanny-automator-pro WordPress plugin before 7.3.0.6 was distributed with malicious code...
- Jul 7, 2026GHSA-qjq2-685q-j8gvHighCVE-2026-57868
MicroRealEstate is affected by broken object-level access controls in PDF generator functionality...
- Jul 7, 2026GHSA-2rhx-q7hx-f25rHighCVE-2026-57869
Broken object-level access controls and the use of a deterministic pattern during random ID...
- Jul 7, 2026GHSA-j55v-w58w-8mxcMediumCVSS 5.3CVE-2026-26053
An Incorrect Privilege Assignment (CWE-266) vulnerability in the Command Centre Server allows an...
- Jul 7, 2026GHSA-2c5j-956x-xmg8LowCVSS 2.7CVE-2026-27844
Uncaught Exception (CWE-248) in the Controller 6000 and Controller 7000 diagnostic web interface...
- Jul 7, 2026GHSA-56pq-38g7-f784LowCVSS 2.7CVE-2026-27790
Uncaught Exception (CWE-248) in the T20 Readers allows an authenticated and authorized operator...
- Jul 7, 2026GHSA-8jc9-q52q-8p76MediumCVSS 6.4CVE-2026-11328
The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site...
- Jul 7, 2026GHSA-22g5-r2x5-97cxMediumCVSS 6.1CVE-2026-59710
showdown contains a stored cross-site scripting vulnerability in the parseHeaders function of src...
- Jul 7, 2026GHSA-r4w3-7jp7-m9g5unknownCVE-2026-38973
mrubyc through release3.4.1 was found to contain an out-of-bounds read in builtin missing-method...
- Jul 7, 2026GHSA-677j-gfv9-ppccunknownCVE-2026-38979
ajenti through v2.2.13 has a clickjacking weakness in the browser-facing login and administrative...
- Jul 7, 2026GHSA-ff2c-rpvx-jp6munknownCVE-2026-38976
mrubyc through 3.4.1 was found to contain a NULL pointer dereference in src/vm.c in op_super() /...
- Jul 7, 2026GHSA-66fv-p34j-fwgrunknownCVE-2026-13356
A malicious webpage could interrupt a pending navigation by enqueuing a synchronous JavaScript...
- Jul 6, 2026GHSA-pmfc-4wjj-gmhxLowCVSS 3.3CVE-2026-35381
cut: -s ignored in -z -d '' newline-delimiter mode
- Jul 6, 2026GHSA-r9hw-mj3w-phcqLowCVSS 3.4CVE-2026-35361
mknod: Device nodes created mislabeled on SELinux, with broken cleanup (remove_dir on a node)
- Jul 6, 2026GHSA-pmf6-rcx4-v53vHighCVSS 7.1CVE-2026-35341
mkfifo: permissions of an existing file are changed after FIFO creation fails
- Jul 6, 2026GHSA-qrwj-vh9x-gw5vHighCVSS 8.3Disclosed before NVD
Coder's workspace agent API insecure redirect handling allowed cross-agent file read and write
- Jul 6, 2026GHSA-cgfv-jrfp-2r7vHighDisclosed before NVD
OpenRemote has Authenticated SQL Injection via Datapoint Crosstab Export
- Jul 6, 2026GHSA-473p-56xx-vg67LowCVE-2026-55630
Kiwi TCMS vulnerable to stored XSS via JavaScript: URI in extra_link field (TestPlan & TestCase)
- Jul 6, 2026GHSA-7cfm-pqrj-xgq7HighCVSS 7.3CVE-2026-55501
9router: Login brute-force protection bypass via spoofed X-Forwarded-For header
- Jul 6, 2026GHSA-qvfm-67h2-2qfxCriticalCVSS 9.9CVE-2026-55500
9routers has Exposure of Sensitive Information and Unprotected Database Import/Export, Allowing Complete Credential Theft and Database Takeover
- Jul 6, 2026GHSA-f74w-488g-8x5rHighCVE-2026-55794
Craft CMS: Potential authenticated Remote Code Execution via referrer redirect
- Jul 6, 2026GHSA-xrqc-p465-2xvgMediumCVE-2026-55793
Craft CMS: Stored XSS via Structure entry title in table view
- Jul 6, 2026GHSA-hphp-fmhr-5fqhHighCVSS 8.1CVE-2026-59712
Leantime's Users::getUser method in the JSON-RPC API lacks proper authorization checks, allowing...
- Jul 6, 2026GHSA-3hmc-px3x-2cjrHighCVSS 7.5CVE-2026-55727
A flaw in the authentication mechanism for video stream requests in Genetec Security Center 5.14...
- Jul 6, 2026GHSA-cr32-g25g-vxjjMediumCVSS 6.1CVE-2026-59711
showdown contains a cross-site scripting vulnerability in metadata title handling that allows...
- Jul 6, 2026GHSA-vwm8-rprj-29f7HighCVSS 8.1CVE-2026-59713
Leantime contains an OIDC login CSRF vulnerability in the verifyState() method that...
- Jul 6, 2026GHSA-29x3-448h-cjxwHighCVSS 7.7CVE-2026-14468
HashiCorp Terraform Enterprise contained an issue in its version control system (VCS) ingestion...
- Jul 6, 2026GHSA-wj36-3pgh-3jfqMediumCVSS 5.3CVE-2026-21384
Memory Corruption when updating prepared commands with invalid port indices based on user space...
- Jul 6, 2026GHSA-h4m3-5rw4-m7w5MediumCVSS 5.3CVE-2026-21370
Memory Corruption when validating input batch size and buffer plane count exceeds maximum allowed...
- Jul 6, 2026GHSA-8956-f28w-h25cHighCVSS 7.8CVE-2026-21379
Memory Corruption when allocating memory with sizes that exceed the maximum allowed value.
- Jul 6, 2026GHSA-3p8m-mr3f-jqg6HighCVSS 7.1CVE-2026-21383
Cryptographic Issue when using a static initialization vector for AES-GCM key wrapping, which...
- Jul 6, 2026GHSA-hmx9-2rg5-jc4pHighCVSS 7.8CVE-2026-25271
Memory Corruption when processing asynchronous input parameters due to improper handling of...
- Jul 6, 2026GHSA-m3mv-mgjg-xqg6MediumCVSS 5.3CVE-2026-21369
Memory Corruption when handling flash commands due to outdated LED count values being used after...
- Jul 6, 2026GHSA-v9qv-qmj7-ghvrMediumCVSS 5.3CVE-2026-21368
Memory Corruption when parsing jpeg commands due to unaccounted extra writes to the buffer during...
- Jul 6, 2026GHSA-685v-jj9g-mfg9HighCVSS 8.8CVE-2026-25268
Memory Corruption when processing invalid HT40 channel layouts during dynamic channel switching...
- Jul 6, 2026GHSA-fjc5-2qg4-f64gMediumCVSS 5.5CVE-2026-48267
DNG SDK versions 1.7.1 2536 and earlier are affected by a NULL Pointer Dereference vulnerability...
- Jul 6, 2026GHSA-5r52-2m8c-4p3mMediumCVSS 6.6CVE-2025-59616
Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input...
- Jul 6, 2026GHSA-7v2w-74r7-8rq2MediumCVSS 5.5CVE-2026-59089
A flaw was found in GIMP. The PlayStation TIM loader, responsible for handling PlayStation image...
- Jul 6, 2026GHSA-8jv7-234c-5cgqMediumCVSS 6.6CVE-2025-59615
Memory Corruption when invoking device input/output control operations for mapping and unmapping...
- Jul 6, 2026GHSA-p9g7-9rvq-fcj5MediumCVSS 6.6CVE-2025-59617
Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input.
- Jul 6, 2026GHSA-gj6m-4qqg-3cw8unknownCVE-2026-14898
The OpenAI Codex desktop app for macOS rendered remote images from Markdown in model responses....
- Jul 6, 2026GHSA-w6f7-pj3m-833junknownCVE-2026-14536
Improper enforcement of a mandatory multi-factor authentication policy in Devolutions Server 2026...
- Jul 6, 2026GHSA-xj4c-7w4q-9gwvMediumCVSS 5.3CVE-2026-9182
ArcGIS Server contains an unrestricted file upload vulnerability. An unauthenticated attacker...
- Jul 6, 2026GHSA-8h42-h5vq-h5gvCriticalCVSS 9.8CVE-2026-9181
ArcGIS Server contains a directory traversal vulnerability. An unauthenticated attacker could...
- Jul 6, 2026GHSA-w55r-jjxw-gxrxunknownCVE-2026-11405
The web server binary /bin/httpd contains a hidden backdoor authentication mechanism in the login...
- Jul 6, 2026GHSA-mmv4-jxh6-w9r5HighCVSS 7.5CVE-2026-13753
A missing authorization vulnerability exists in the embedded webserver of HP Deskjet 2800 Series...
- Jul 6, 2026GHSA-287w-mxq6-x2cpMediumCVE-2026-55792
Craft CMS: Sensitive File Disclosure / Server-Side File Read
- Jul 6, 2026GHSA-24x4-j6x9-rfw5HighCVE-2026-55790
Craft CMS: DOM XSS via GitHub issue title in CraftSupport widget
- Jul 6, 2026GHSA-hmj5-jm8h-h9fhMediumCVSS 6.1CVE-2026-54724
Kiwi TCMS has an Open Redirect via unvalidated next parameter in account confirmation endpoint
- Jul 6, 2026GHSA-ww9q-8r59-xv46CriticalCVSS 9.3CVE-2026-54496
Zebra: Missing copy constraint in halo2_gadgets variable-base scalar multiplication allows under-constrained base, breaking Orchard Action circuit soundness
- Jul 6, 2026GHSA-2pq5-3q89-j7ccCriticalCVE-2026-55615
Langroid: Neo4jChatAgent executes LLM-generated Cypher without validation (prompt-to-Cypher injection; config-conditional RCE), mirroring the SQLChatAgent bug fixed in CVE-2026-25879
- Jul 6, 2026GHSA-vjc7-jrh9-9j86CriticalCVSS 10.0Disclosed before NVD
9router has unauthenticated CRUD on /api/providers and Full API Key Leak via /api/usage/stats
- Jul 6, 2026GHSA-5wg6-jmq2-53pwMediumCVSS 5.8CVE-2026-55438
Coder's workspace app CORS origin check can be bypassed via UUID-based subdomain spoofing
- Jul 6, 2026GHSA-798h-hpph-m24jHighCVSS 7.8CVE-2026-55426
Linuxfabrik Monitoring Plugins have local privilege escalation using embedded command
- Jul 6, 2026GHSA-7qw2-f75v-62f7MediumCVSS 5.4CVE-2026-55437
Coder vulnerable to stored HTML injection via workspace agent logs in AgentLogLine component
- Jul 6, 2026GHSA-84rm-42xw-mx52HighCVSS 7.4CVE-2026-55436
Coder's AI Bridge Proxy skips TLS certificate verification in default configuration
- Jul 6, 2026GHSA-wqxv-w64v-5wh6MediumCVSS 5.4CVE-2026-55435
Suspended Coder users retain access to AI Bridge LLM proxy endpoints
- Jul 6, 2026GHSA-f5vp-w269-392gMediumCVSS 6.5CVE-2026-55434
Coder vulnerable to denial of service via unbounded request body in AI Bridge provider endpoints
- Jul 6, 2026GHSA-jqj2-x4c5-jfxmMediumCVSS 5.4CVE-2026-55433
Coder: Devcontainer recreate endpoint missing write authorization allows read-only roles to destroy containers
- Jul 6, 2026GHSA-x9qq-2qh5-8rxfMediumCVSS 5.4CVE-2026-55432
Coder's sub-agent app registration bypasses template port-sharing policy enforcement
- Jul 6, 2026GHSA-v54h-cp2w-9x4gHighCVSS 7.7CVE-2026-55431
Coder's session token leaked to arbitrary hosts via `coder open app` for external workspace apps
- Jul 6, 2026GHSA-2mg2-p7r7-g27fMediumCVSS 6.5CVE-2026-55078
Coder: Zip upload decompression lacks aggregate size limit, enabling denial of service
- Jul 6, 2026GHSA-5g4w-3vw9-478wMediumCVSS 5.8CVE-2026-55430
Coder's subdomain workspace app routing trusts unauthenticated X-Forwarded-Host header, enabling cross-app data access
- Jul 6, 2026GHSA-wrq8-fcv5-8hvpHighCVSS 8.2CVE-2026-55428
Coder: Route hijacking through lack of validation of agent-supplied AllowedIPs in tailnet coordinator
- Jul 6, 2026GHSA-9rjw-3gwp-f59vHighCVSS 8.7CVE-2026-55429
Coder's workspace app upsert allows cross-workspace agent rebinding via user-controlled app ID
- Jul 6, 2026GHSA-f962-qm93-mj4cMediumCVSS 4.9CVE-2026-55079
Coder's unbounded memory allocation in provisioner file upload allows authenticated denial of service
- Jul 6, 2026GHSA-mcqq-fqgf-rxwmHighCVSS 8.3CVE-2026-55427
Coder vulnerable to SSH config injection via unsanitized server-supplied values in `coder config-ssh`
- Jul 6, 2026GHSA-29xf-69gq-m9jxHighCVSS 7.2CVE-2026-55077
Coder: User-admin role can reset owner account password
- Jul 6, 2026GHSA-9r87-mvcw-x35fHighCVSS 7.4CVE-2026-55075
Coder vulnerable to OIDC account takeover via email-based user matching and email_verified bypass
- Jul 6, 2026GHSA-75vm-6w67-gwvpHighCVSS 7.4CVE-2026-55076
Coder's OIDC email_verified type coercion bypass enables account takeover via unverified email linking
- Jul 6, 2026GHSA-7v6w-c3f4-9wpqHighCVSS 7.6CVE-2026-54640
OpenRemote has an incomplete fix for CVE-2026-40882: XXE in KNXProtocol.startAssetImport() allows arbitrary file read via unprotected XMLInputFactory
- Jul 6, 2026GHSA-xqr9-4wvv-gvchHighCVSS 7.7CVE-2026-54641
OpenRemote has Cross-Realm User Information Disclosure in UserResourceImpl
- Jul 6, 2026GHSA-q6h5-q3q6-f87xMediumCVSS 6.9CVE-2026-53935
CiliumLocalRedirectPolicy addressMatcher allows cross-namespace service traffic hijacking and can break service translation
- Jul 6, 2026GHSA-gv83-gqw6-9j2cMediumCVSS 4.8CVE-2026-53624
GoFiber never set HSTS header in helmet middleware due to incorrect protocol check
- Jul 6, 2026GHSA-gjgq-w2m6-wr5qHighCVSS 8.1CVE-2026-54771
Langroid: handle_message() executes user-supplied tool JSON without sender verification
- Jul 6, 2026GHSA-q9p7-wqxg-mrhcCriticalCVSS 10.0CVE-2026-54769
Langroid: Sandbox Escape to Remote Code Execution via Incomplete `eval()` Mitigation in TableChatAgent
- Jul 6, 2026GHSA-6xc5-4r68-67fcCriticalCVE-2026-54760
Langroid: SQLChatAgent dangerous-function blocklist can be bypassed with quoted or schema-qualified pg_read_file calls
- Jul 6, 2026GHSA-chwm-m7g7-685gMediumCVE-2026-54637
Dragonfly scheduler v1 and v2 gRPC unauthenticated SSRF via attacker-controlled PeerHost in DownloadTinyFile
- Jul 6, 2026GHSA-r35r-fpx2-jgr4LowCVE-2026-53759
Linuxfabrik Monitoring Plugins allow insecure creation of SQLite databases
- Jul 6, 2026GHSA-x76w-8c62-48mgMediumDisclosed before NVD
Craft CMS: Authenticated "assets/preview-thumb" discloses signed fallback transform preview link to CP users without asset-view permission
- Jul 6, 2026GHSA-mp2f-45pm-3cg9CriticalCVSS 9.1CVE-2026-53486
Decompress: Archive extraction can create files and links outside of the target directory
- Jul 6, 2026GHSA-p7h3-7q52-72w8MediumCVSS 4.4CVE-2026-35366
printenv: environment variables with invalid UTF-8 are silently skipped (evades inspection)
- Jul 6, 2026GHSA-w6xc-g9qj-vp32LowCVSS 3.6CVE-2026-35362
uucore: safe_traversal TOCTOU protection only enabled on Linux
- Jul 6, 2026GHSA-h444-6j9x-p8vhMediumCVSS 6.6CVE-2026-35365
mv: symlinks expanded during cross-device move (resource exhaustion / data duplication)
- Jul 6, 2026GHSA-8vrf-r662-2w2vMediumCVSS 4.4CVE-2026-35358
cp: -R reads device nodes as streams, destroying device semantics
- Jul 6, 2026GHSA-89p7-7cq3-hhr2MediumCVSS 5.6CVE-2026-35363
rm: 'rm -rf ./' (and ./// variants) silently deletes current directory contents, bypassing dot protection
- Jul 6, 2026GHSA-3wfc-mgpm-9rq6MediumCVSS 4.4CVE-2026-35347
comm: FIFO/pipe inputs are drained before comparison (data loss / hang)
- Jul 6, 2026GHSA-47c7-qrm7-mqw7MediumCVSS 4.4CVE-2026-35370
id: groups= computed from real GID instead of effective GID
- Jul 6, 2026GHSA-mj6p-44ch-cq69LowCVSS 3.3CVE-2026-35353
mkdir: -m exposes directory with umask perms before chmod (race window)
- Jul 6, 2026GHSA-7cr3-h577-g38jMediumCVSS 6.7CVE-2026-35349
rm: --preserve-root bypassed via a symlink to / (string check instead of dev/inode)
- Jul 6, 2026GHSA-xv5w-cw7x-72gjLowCVSS 3.3CVE-2026-35371
id: pretty-print uses effective GID instead of effective UID for name lookup
- Jul 6, 2026GHSA-p6rv-2qpm-fwvgMediumCVSS 5.5CVE-2026-35369
kill: 'kill -1' parsed as PID -1, sending SIGTERM to all processes (system crash / DoS)