GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
5,241 advisories
Budibase Unrestricted Server-Side Request Forgery (SSRF) via REST Datasource Query Preview
High
CVE-2026-33226
was published
for
budibase
(npm)
Mar 18, 2026
Parse Server leaks protected fields via LiveQuery afterEvent trigger
High
CVE-2026-33163
was published
for
parse-server
(npm)
Mar 18, 2026
ApostropheCMS has Arbitrary File Write (Zip Slip / Path Traversal) in Import-Export Gzip Extraction
Critical
CVE-2026-32731
was published
for
@apostrophecms/import-export
(npm)
Mar 18, 2026
ApostropheCMS MFA/TOTP Bypass via Incorrect MongoDB Query in Bearer Token Middleware
High
CVE-2026-32730
was published
for
apostrophe
(npm)
Mar 18, 2026
socket.io allows an unbounded number of binary attachments
High
CVE-2026-33151
was published
for
socket.io-parser
(npm)
Mar 18, 2026
ProTip!
Advisories are also available from the
GraphQL API