GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
3 advisories
CarrierWave has a denylisted_content_type bypass via Unescaped Regex Metacharacters
Moderate
CVE-2026-44587
was published
for
carrierwave
(RubyGems)
May 27, 2026
Command injection in Rancher Git package
Moderate
CVE-2022-43758
was published
for
github.com/rancher/rancher
(Go)
Jan 25, 2023
Plugin archive directory traversal in Helm
Low
CVE-2020-4053
was published
for
helm.sh/helm/v3
(Go)
Jun 23, 2021
ProTip!
Advisories are also available from the
GraphQL API