GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
4 advisories
path-to-regexp vulnerable to Regular Expression Denial of Service via multiple route parameters
High
CVE-2026-4867
was published
for
path-to-regexp
(npm)
Mar 27, 2026
SQL Injection via unsanitized JSON path keys when ignoring/silencing compilation errors or using `Kysely<any>`.
High
CVE-2026-32763
was published
for
kysely
(npm)
Mar 18, 2026
Sequelize v6 Vulnerable to SQL Injection via JSON Column Cast Type
High
CVE-2026-30951
was published
for
sequelize
(npm)
Mar 11, 2026
Multer vulnerable to Denial of Service via incomplete cleanup
High
CVE-2026-3304
was published
for
multer
(npm)
Mar 1, 2026
ProTip!
Advisories are also available from the
GraphQL API