GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
17 advisories
OpenClaw: Sandbox escape via TOCTOU race in remote FS bridge readFile
Critical
CVE-2026-41296
was published
for
openclaw
(npm)
Apr 3, 2026
@nyariv/sandboxjs vulnerable to sandbox escape via TOCTOU bug on keys in property accesses
Critical
CVE-2026-25641
was published
for
@nyariv/sandboxjs
(npm)
Feb 5, 2026
n8n's Improper File Access Controls Allow Arbitrary File Read by Authenticated Users
Critical
CVE-2026-25052
was published
for
n8n
(npm)
Feb 4, 2026
Waitress has request processing race condition in HTTP pipelining with invalid first request
Critical
CVE-2024-49768
was published
for
waitress
(pip)
Oct 29, 2024
Time-of-check Time-of-use (TOCTOU) Race Condition in league/flysystem
Critical
CVE-2021-32708
was published
for
league/flysystem
(Composer)
Jun 29, 2021
ProTip!
Advisories are also available from the
GraphQL API