GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
9 advisories
Caddy: Remote Admin Authorization Bypass in `/config` API via Array Index Normalization
Moderate
CVE-2026-45692
was published
for
github.com/caddyserver/caddy/v2
(Go)
May 19, 2026
view_component: System Test Entry Point Path Check Allows Sibling Directory Escape
Moderate
CVE-2026-44837
was published
for
view_component
(RubyGems)
May 8, 2026
Rack::Static prefix matching can expose unintended files under the static root
High
CVE-2026-34785
was published
for
rack
(RubyGems)
Apr 2, 2026
ESP-IDF web_server basic auth bypass using empty or incomplete Authorization header
High
CVE-2025-57808
was published
for
esphome
(pip)
Sep 2, 2025
Authz zero length regression
Critical
CVE-2024-41110
was published
for
github.com/docker/docker
(Go)
Jul 30, 2024
ProTip!
Advisories are also available from the
GraphQL API