GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
3 advisories
Strapi Vulnerable to SQL Injection in Content Type Builder
Critical
CVE-2026-22599
was published
for
@strapi/content-type-builder
(npm)
May 13, 2026
Sylius has a Promotion Usage Limit Bypass via Race Condition
High
CVE-2026-31824
was published
for
sylius/sylius
(Composer)
Mar 11, 2026
Sylius Vulnerable to Authenticated Stored XSS
Moderate
CVE-2026-31823
was published
for
sylius/sylius
(Composer)
Mar 11, 2026
ProTip!
Advisories are also available from the
GraphQL API