Identifier index
Verified GHSA reproductions
Public GitHub Security Advisory reproductions with runnable sandbox proof, affected package/version metadata, artifacts, and permanent REPRO IDs.
73 GHSA-backed records
Agent catalog GHSA-R8MH-X5QV-7GG2
REPRO-2026-00186 published
libssh2 via curl: malformed SSH packet length crashes SFTP client
CVE-2026-55200 critical Security c
libssh2
11m 23s Jun 25, 2026
GHSA-hx53-77qj-8663
REPRO-2026-00185 published
HashiCorp Nomad: path traversal in host volume plugin loader → client-host RCE
CVE-2026-7474 high Security go
nomad
48m 9s May 28, 2026
GHSA-cv4m-mr84-fgjp
REPRO-2026-00183 published
MapServer: heap-buffer-overflow in SLD Categorize parser (msSLDParseRasterSymbolizer)
CVE-2026-33721 high Security c
mapserver
14m 33s May 28, 2026
GHSA-q3h9-m34w-h76f
REPRO-2026-00170 published
jq: integer overflow in jv_string_concat triggers heap buffer overflow on large strings
CVE-2026-32316 high Security github
jq
32m 33s May 28, 2026
GHSA-frfr-f3vg-2g6j
REPRO-2026-00159 published
libheif: heap-buffer-overflow write decoding 1x4 grid of odd-height tiles
CVE-2026-32740 high Security c
libheif
41m 53s May 23, 2026
GHSA-rhf7-wvw3-vjvm
REPRO-2026-00158 published
goshs: PUT upload accepts cross-origin requests without CSRF token
CVE-2026-42091 medium Security go
github.com/patrickhener/goshs
35m 17s May 23, 2026
GHSA-35hp-hqmv-8qg8
REPRO-2026-00157 published
Fiber v3: cache middleware key collision leaks responses across different query strings
CVE-2026-30246 medium Security go
github.com/gofiber/fiber/v3
27m 11s May 23, 2026
GHSA-5vpg-rj7q-qpw2
REPRO-2026-00156 published
Yii2: local file inclusion via View::renderPhpFile extract() of caller-controlled params
CVE-2026-39850 high Security composer
yiisoft/yii2
15m 11s May 23, 2026
GHSA-f89h-2fjh-2r9q
REPRO-2026-00155 published
gitoxide (gix-fs): symlink worktree escape on checkout writes files outside the worktree
CVE-2026-44471 high Security cargo
gix-fs
33m 22s May 22, 2026
GHSA-5789-5fc7-67v3
REPRO-2026-00153 published
Jupyter Server: path traversal via faulty startswith() root containment check
CVE-2026-35397 high Security pip
jupyter-server
25m 14s May 22, 2026
GHSA-qq3r-w4hj-gjp6
REPRO-2026-00152 published
apko: symlink-following path traversal writes files outside the build root
CVE-2026-42574 high Security go
apko
20m 23s May 22, 2026
GHSA-2q52-x2ff-qgfr
REPRO-2026-00151 published
Twig: sandbox bypass via SourcePolicy filter check enables arbitrary PHP callables
CVE-2026-24425 high Security composer
twig/twig
13m 7s May 22, 2026
GHSA-q4q6-r8wh-5cgh
REPRO-2026-00150 published
PhpSpreadsheet: SSRF via unsafe stream wrapper in IOFactory::load()
CVE-2026-34084 critical Security composer
phpoffice/phpspreadsheet
12m 53s May 22, 2026
GHSA-9q28-ghcr-c4x3
REPRO-2026-00149 published
PraisonAI: ZipSlip path traversal via unchecked tar symlink linkname in _safe_extractall
CVE-2026-44340 high Security pip
praisonai
17m 42s May 22, 2026
GHSA-8mp2-v27r-99xp
REPRO-2026-00148 published
Mistune: ReDoS via catastrophic backtracking in LINK_TITLE_RE
CVE-2026-33079 high Security pip
mistune
14m 50s May 22, 2026
GHSA-33mh-2634-fwr2
REPRO-2026-00147 published
Faraday: SSRF via protocol-relative URL overriding base authority
CVE-2026-25765 medium Security rubygems
faraday
10m 15s May 22, 2026
GHSA-v39h-62p7-jpjc
REPRO-2026-00146 published
fast-uri: host confusion via percent-encoded authority delimiter in normalize()
CVE-2026-6322 high Security npm
fast-uri
10m 18s May 22, 2026
GHSA-q3j6-qgpj-74h6
REPRO-2026-00145 published
fast-uri: path traversal via percent-encoded segments decoded before normalization
CVE-2026-6321 high Security npm
fast-uri
10m 8s May 22, 2026
GHSA-289f-fq7w-6q2w
REPRO-2026-00144 published
phpMyFAQ: unauthenticated SQL injection via User-Agent header in captcha API
CVE-2026-46364 critical Security composer
thorsten/phpmyfaq
62m 14s May 22, 2026
GHSA-5c46-x3qw-q7j7
REPRO-2026-00143 published
@wdio/browserstack-service: OS command injection via crafted git branch name
CVE-2026-25244 critical Security npm
@wdio/browserstack-service
59m 49s May 22, 2026
GHSA-7f2h-cmpf-v9ww
REPRO-2026-00142 published
libheif: integer underflow out-of-bounds read crash via crafted HEIF stsc box
CVE-2026-32738 medium Security c
libheif
50m 30s May 22, 2026
GHSA-q843-6q5f-w55g
REPRO-2026-00139 published
libjwt: JWT algorithm-confusion authentication bypass via RSA JWK without alg
CVE-2026-44699 critical Security c
libjwt
13m 26s May 22, 2026
GHSA-vv7q-7jx5-f767
REPRO-2026-00138 published
FastMCP: path traversal to authenticated SSRF in OpenAPIProvider _build_url()
CVE-2026-32871 high Security pip
fastmcp
37m 15s May 22, 2026
GHSA-q5pp-gvjg-h7v4
REPRO-2026-00136 published
Microsoft APM: arbitrary file disclosure via symlink-following on apm install
CVE-2026-45539 high Security pip
apm
29m 1s May 22, 2026
GHSA-xxjr-mmjv-4gpg
REPRO-2026-00134 published
lodash: prototype pollution in _.unset/_.omit deletes global prototype methods
CVE-2025-13465 medium Security npm
lodash
29m 27s May 22, 2026
GHSA-2GMJ-RPQF-PXVH
REPRO-2026-00124 published
Vim modeline handling for the tabpanel option allows sandbox escape via autocmd_add, enabling OS command execution when opening a crafted file.
CVE-2026-34714 high Security github
Vim
19m 38s Apr 1, 2026
GHSA-63cw-57p8-fm3p
REPRO-2026-00119 published
PyTorch: weights_only Unpickler RCE via SETITEM Type Confusion
CVE-2026-24747 high Security pip
torch
48m 8s Mar 2, 2026
GHSA-97rm-xj73-33jh
REPRO-2026-00115 published
eBay MCP Server Environment Variable Injection via Crafted Prompts
CVE-2026-27203 critical Security npm
@anthropic-ai/ebay-mcp-server
11m 39s Feb 20, 2026
GHSA-c87c-78rc-vmv2
REPRO-2026-00114 published
D-Tale Remote Code Execution via Custom Filter Input
CVE-2026-27194 critical Security pip
dtale
11m 53s Feb 20, 2026
GHSA-9m9c-vpv5-9g85
REPRO-2026-00113 published
Feathers OAuth Authorization Header Leak to Third-Party
CVE-2026-27192 high Security npm
@feathersjs/authentication-oauth
7m 45s Feb 20, 2026
GHSA-8r7r-f4gm-wcpq
REPRO-2026-00112 published
Statamic CMS Stored XSS via Markdown Fieldtype
CVE-2026-27197 high Security composer
statamic/cms
7m 48s Feb 20, 2026
GHSA-34p4-7w83-35g2
REPRO-2026-00111 published
Formwork CMS Improper Privilege Management in User Creation
CVE-2026-27198 high Security composer
getformwork/formwork
12m 42s Feb 20, 2026
GHSA-hmh4-3xvx-q5hr
REPRO-2026-00110 published
Deno Command Injection via Incomplete Metacharacter Blocklist
CVE-2026-27190 high Security rust
deno
10m 5s Feb 20, 2026
GHSA-ppf9-4ffw-hh4p
REPRO-2026-00109 published
Feathers OAuth Open Redirect Account Takeover
CVE-2026-27191 high Security npm
@feathersjs/authentication-oauth
12m 54s Feb 20, 2026
GHSA-v7m3-fpcr-h7m2
REPRO-2026-00108 published
Zumba JSON Serializer PHP Object Injection
CVE-2026-27206 high Security composer
zumba/json-serializer
11m 26s Feb 20, 2026
GHSA-hmx5-qpq5-p643
REPRO-2026-00107 published
Swiper Prototype Pollution
CVE-2026-27212 critical Security npm
swiper
10m 21s Feb 20, 2026
GHSA-6qr9-g2xw-cw92
REPRO-2026-00106 published
Dagu Unauthenticated RCE via Inline DAG Spec
GHSA-6qr9-g2xw-cw92 critical Security go
github.com/dagu-org/dagu
18m 38s Feb 20, 2026
GHSA-hfvx-25r5-qc3w
REPRO-2026-00105 published
Fabric.js: Stored XSS via SVG Export
CVE-2026-27013 high Security npm
fabric
16m 24s Feb 19, 2026
GHSA-9c88-49p5-5ggf
REPRO-2026-00104 published
systeminformation: Command Injection via WiFi Interface Parameter
CVE-2026-26280 high Security npm
systeminformation
19m 36s Feb 19, 2026
GHSA-9vjf-qc39-jprp
REPRO-2026-00103 published
jsPDF: PDF Object Injection via Unsanitized addJS Input
CVE-2026-25755 high Security npm
jspdf
14m 30s Feb 19, 2026
GHSA-p5xg-68wr-hm3m
REPRO-2026-00102 published
jsPDF: PDF Injection in AcroForm RadioButton allows JS Execution
CVE-2026-25940 high Security npm
jspdf
23m 38s Feb 19, 2026
GHSA-79q9-wc6p-cf92
REPRO-2026-00101 published
LibreNMS: Time-Based Blind SQL Injection in address-search
CVE-2026-26990 high Security composer
librenms/librenms
11m 33s Feb 19, 2026
GHSA-5vv4-hvf7-2h46
REPRO-2026-00100 published
systeminformation: Command Injection via locate Output
CVE-2026-26318 high Security npm
systeminformation
18m 44s Feb 19, 2026
GHSA-xjw9-4gw8-4rqx
REPRO-2026-00099 published
Semantic Kernel: RCE via InMemoryVectorStore Filter
CVE-2026-26030 critical Security pip
semantic-kernel
25m 13s Feb 19, 2026
GHSA-ww7g-4gwx-m7wj
REPRO-2026-00098 published
SandboxJS: Host Prototype Pollution via Array Intermediary (Sandbox Escape)
CVE-2026-25881 critical Security npm
@nyariv/sandboxjs
16m 1s Feb 19, 2026
GHSA-x9vf-53q3-cvx6
REPRO-2026-00097 published
CASL Ability: Prototype Pollution via Condition Handling
CVE-2026-1774 critical Security npm
@casl/ability
6m 19s Feb 19, 2026
GHSA-7ppg-37fh-vcr6
REPRO-2026-00096 published
Milvus: Unauthenticated Access to Restful API on Metrics Port Leading to System Compromise
CVE-2026-26190 critical Security go
github.com/milvus-io/milvus
16m 18s Feb 19, 2026
GHSA-78wq-6gcv-w28r
REPRO-2026-00095 published
Known CMS: Account Takeover via Password Reset Token Leakage
CVE-2026-26273 critical Security composer
idno/known
17m 40s Feb 19, 2026
GHSA-qrq5-wjgg-rvqw
REPRO-2026-00094 published
OpenClaw: Path Traversal in Plugin Installation
GHSA-qrq5-wjgg-rvqw critical Security npm
openclaw
7m 36s Feb 19, 2026
GHSA-5882-5rx9-xgxp
REPRO-2026-00093 published
Crawl4AI: Remote Code Execution in Docker API via Hooks Parameter
CVE-2026-26216 critical Security pip
Crawl4AI
10m 34s Feb 19, 2026
GHSA-xx6w-jxg9-2wh8
REPRO-2026-00092 published
Payload CMS: Blind SQL Injection in JSON/RichText Queries via Drizzle Adapters
CVE-2026-25544 critical Security npm
@payloadcms/drizzle
15m 33s Feb 19, 2026
GHSA-w52v-v783-gw97
REPRO-2026-00091 published
Ghost CMS: Unauthenticated SQL Injection in Content API Slug Filter
CVE-2026-26980 critical Security npm
ghost
4m 15s Feb 19, 2026
GHSA-832g-3rcm-wcrf
REPRO-2026-00090 published
WinRAR ADS Path Traversal — Arbitrary Code Execution via Crafted Archive (CVE-2025-8088)
CVE-2025-8088 high Security
123m 42s Feb 17, 2026
GHSA-R6PH-V2QM-Q3C2
REPRO-2026-00089 published
pyca/cryptography SECT curve public key parsing lacks subgroup validation, enabling small-subgroup attacks that leak ECDH private key bits and allow ECDSA signature forgery.
CVE-2026-26007 high Security
cryptography (pip)
6m 32s Feb 15, 2026
GHSA-WXRW-GVG8-FQJP
REPRO-2026-00088 published
Sliver has DNS C2 OTP Bypass that Allows Unauthenticated Session Flooding and Denial of Service
GHSA-WXRW-GVG8-FQJP Security
13m 22s Feb 13, 2026
GHSA-Q672-HFC7-G833
REPRO-2026-00087 published
Apache Druid basic security LDAP authenticator can be bypassed when the LDAP server allows anonymous binds, permitting login with any existing username and an empty password.
CVE-2026-23906 critical Security Maven
org.apache.druid.extensions:druid-basic-security
48m 55s Feb 13, 2026
GHSA-CFH3-3JMP-RVHC
REPRO-2026-00085 published
Pillow 10.3.0–12.1.0 allows an out-of-bounds write when loading specially crafted PSD images, potentially leading to memory corruption.
GHSA-CFH3-3JMP-RVHC Security
3m 16s Feb 13, 2026
GHSA-GM8Q-M8MV-JJ5M
REPRO-2026-00084 published
Unstructured has Path Traversal via Malicious MSG Attachment that Allows Arbitrary File Write
CVE-2025-64712 Security pypi
unstructured
4m 50s Feb 13, 2026
GHSA-VQXF-V2GG-X3HC
REPRO-2026-00080 published
Docling-core YAML Deserialization RCE via FullLoader
CVE-2026-24009 high Security pip
docling-core
6m 1s Feb 13, 2026
GHSA-2pc9-4j83-qjmr
REPRO-2026-00078 published
vLLM RCE via auto_map dynamic module loading
CVE-2026-22807 high Security pip
vllm
19m 50s Jan 22, 2026
GHSA-j22h-9j4x-23w5
REPRO-2026-00076 published
MCP Server Git: Path Traversal via Missing Repository Path Validation
CVE-2025-68145 medium Security pip
mcp-server-git
11m 29s Jan 21, 2026
GHSA-mmwx-79f6-67jg
REPRO-2026-00070 published
wlc: Path traversal via unsanitized API slugs in download command
CVE-2026-23535 high Security pip
wlc
20m 59s Jan 17, 2026
GHSA-gw32-9rmw-qwww
REPRO-2026-00067 published
Svelte XSS via textarea bind:value in SSR
GHSA-gw32-9rmw-qwww high Security npm
svelte
8m 49s Jan 17, 2026
GHSA-cc8m-98fm-rc9g
REPRO-2026-00066 published
Skipper Lua Filter Arbitrary Code Execution
GHSA-cc8m-98fm-rc9g high Security go
github.com/zalando/skipper
9m 5s Jan 17, 2026
GHSA-8qq5-rm4j-mr97
REPRO-2026-00065 published
node-tar Arbitrary File Overwrite via Hardlink Escape
GHSA-8qq5-rm4j-mr97 high Security npm
tar
6m 8s Jan 17, 2026
GHSA-mw26-5g2v-hqw3
REPRO-2026-00063 published
deepdiff: Class Pollution RCE via Delta Tuple Path Bypass
CVE-2025-58367 critical Security pip
deepdiff
1m 7s Jan 13, 2026
GHSA-wwqv-p2pp-99h5
REPRO-2026-00062 published
langgraph-checkpoint: Constructor Deserialization RCE in JsonPlusSerializer
CVE-2025-64439 high Security pip
langgraph-checkpoint
1m 7s Jan 12, 2026
GHSA-g8c6-8fjj-2r4m
REPRO-2026-00061 published
python-socketio: Pickle Deserialization RCE in PubSub Manager
CVE-2025-61765 medium Security pip
python-socketio
1m 5s Jan 12, 2026
GHSA-v64r-7wg9-23pr
REPRO-2026-00054 published
Craft CMS: Unauthenticated Database Backup Trigger
CVE-2025-68456 medium Security composer
craftcms/cms
36m 45s Jan 8, 2026
GHSA-2hc9-cc65-xwj8
REPRO-2026-00052 published
ComfyUI-Manager: Configuration File Exposure via Web-Accessible Path
CVE-2025-67303 high Security pip
ComfyUI-Manager
11m 32s Jan 8, 2026
GHSA-33xw-247w-6hmc
REPRO-2026-00045 published
BentoML RCE via Insecure Deserialization
CVE-2025-27520 critical Security pip
bentoml
16m 37s Jan 7, 2026