GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
3 advisories
@payloadcms/drizzle has SQL Injection in JSON/RichText Queries on PostgreSQL/SQLite Adapters
Critical
CVE-2026-25544
was published
for
@payloadcms/drizzle
(npm)
Feb 5, 2026
Wagtail has improper permission handling on admin preview endpoints
Moderate
CVE-2026-25517
was published
for
wagtail
(pip)
Feb 3, 2026
SiYuan has Arbitrary File Write via /api/file/copyFile leading to RCE
Critical
CVE-2026-25539
was published
for
github.com/siyuan-note/siyuan/kernel
(Go)
Jan 29, 2026
ProTip!
Advisories are also available from the
GraphQL API