Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

8 advisories

Loading
Flawfinder output manipulation via untrusted filenames and source text Low
CVE-2026-48813 was published for flawfinder (pip) Jun 26, 2026
Prefect Git Argument Injection in GitRepository Pull Steps Low
CVE-2026-7725 was published for prefect (pip) May 4, 2026
nedlir Credited to nedlir
Hugging Face Smolagents has an Injection issue Low
CVE-2026-4963 was published for smolagents (pip) Mar 27, 2026
Langflow vulnerable to injection Low
CVE-2026-6599 was published for langflow (pip) Apr 20, 2026
MindSQL is vulnerable to Code Injection through its ask_db function Low
CVE-2026-4506 was published for mindsql (pip) Mar 21, 2026
dbt has an implicit override for built-in materializations from installed packages Low
CVE-2024-40637 was published for dbt-core (pip) Jul 17, 2024
brabster Credited to brabster
Langchain SQL Injection vulnerability Low
CVE-2024-8309 was published for langchain (pip) Oct 29, 2024
BarrensZeppelin Credited to BarrensZeppelin, eyurtsev, and efriis eyurtsev eyurtsev
efriis efriis
tqdm CLI arguments injection attack Low
CVE-2024-34062 was published for tqdm (pip) May 3, 2024
CopperEagle Credited to CopperEagle
ProTip! Advisories are also available from the GraphQL API