github
diff --git a/‎…-4phw-6824-6cfp/GHSA-4phw-6824-6cfp.json‎ ‎…-4phw-6824-6cfp/GHSA-4phw-6824-6cfp.json‎advisories/unreviewed/2026/04/GHSA-4phw-6824-6cfp/GHSA-4phw-6824-6cfp.json renamed to advisories/github-reviewed/2026/04/GHSA-4phw-6824-6cfp/GHSA-4phw-6824-6cfp.json
Lines changed: 29 additions & 4 deletions b/‎…-4phw-6824-6cfp/GHSA-4phw-6824-6cfp.json‎ ‎…-4phw-6824-6cfp/GHSA-4phw-6824-6cfp.json‎advisories/unreviewed/2026/04/GHSA-4phw-6824-6cfp/GHSA-4phw-6824-6cfp.json renamed to advisories/github-reviewed/2026/04/GHSA-4phw-6824-6cfp/GHSA-4phw-6824-6cfp.json
Lines changed: 29 additions & 4 deletions
diff --git a/‎…-52vj-fvrv-7q82/GHSA-52vj-fvrv-7q82.json‎ ‎…-52vj-fvrv-7q82/GHSA-52vj-fvrv-7q82.json‎advisories/unreviewed/2026/04/GHSA-52vj-fvrv-7q82/GHSA-52vj-fvrv-7q82.json renamed to advisories/github-reviewed/2026/04/GHSA-52vj-fvrv-7q82/GHSA-52vj-fvrv-7q82.json
Lines changed: 28 additions & 7 deletions b/‎…-52vj-fvrv-7q82/GHSA-52vj-fvrv-7q82.json‎ ‎…-52vj-fvrv-7q82/GHSA-52vj-fvrv-7q82.json‎advisories/unreviewed/2026/04/GHSA-52vj-fvrv-7q82/GHSA-52vj-fvrv-7q82.json renamed to advisories/github-reviewed/2026/04/GHSA-52vj-fvrv-7q82/GHSA-52vj-fvrv-7q82.json
Lines changed: 28 additions & 7 deletions
diff --git a/‎advisories/github-reviewed/2026/04/GHSA-55v6-g8pm-pw4c/GHSA-55v6-g8pm-pw4c.json‎
Lines changed: 63 additions & 0 deletions b/‎advisories/github-reviewed/2026/04/GHSA-55v6-g8pm-pw4c/GHSA-55v6-g8pm-pw4c.json‎
Lines changed: 63 additions & 0 deletions
diff --git a/‎…-8wrq-fv5f-pfp2/GHSA-8wrq-fv5f-pfp2.json‎ ‎…-8wrq-fv5f-pfp2/GHSA-8wrq-fv5f-pfp2.json‎advisories/unreviewed/2026/04/GHSA-8wrq-fv5f-pfp2/GHSA-8wrq-fv5f-pfp2.json renamed to advisories/github-reviewed/2026/04/GHSA-8wrq-fv5f-pfp2/GHSA-8wrq-fv5f-pfp2.json
Lines changed: 29 additions & 4 deletions b/‎…-8wrq-fv5f-pfp2/GHSA-8wrq-fv5f-pfp2.json‎ ‎…-8wrq-fv5f-pfp2/GHSA-8wrq-fv5f-pfp2.json‎advisories/unreviewed/2026/04/GHSA-8wrq-fv5f-pfp2/GHSA-8wrq-fv5f-pfp2.json renamed to advisories/github-reviewed/2026/04/GHSA-8wrq-fv5f-pfp2/GHSA-8wrq-fv5f-pfp2.json
Lines changed: 29 additions & 4 deletions
diff --git a/‎advisories/github-reviewed/2026/04/GHSA-9cp7-j3f8-p5jx/GHSA-9cp7-j3f8-p5jx.json‎
Lines changed: 62 additions & 0 deletions b/‎advisories/github-reviewed/2026/04/GHSA-9cp7-j3f8-p5jx/GHSA-9cp7-j3f8-p5jx.json‎
Lines changed: 62 additions & 0 deletions
@@ -1,19 +1,40 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-4phw-6824-6cfp",
-  "modified": "2026-04-10T06:31:37Z",
+  "modified": "2026-04-10T22:09:31Z",
   "published": "2026-04-10T03:31:10Z",
   "aliases": [
     "CVE-2026-33551"
   ],
+  "summary": "OpenStack Keystone: Restricted application credentials can create EC2 credentials",
   "details": "An issue was discovered in OpenStack Keystone 14 through 26 before 26.1.1, 27.0.0, 28.0.0, and 29.0.0. Restricted application credentials can create EC2 credentials. By using a restricted application credential to call the EC2 credential creation API, an authenticated user with only a reader role may obtain an EC2/S3 credential that carries the full set of the parent user's S3 permissions, effectively bypassing the role restrictions imposed on the application credential. Only deployments that use restricted application credentials in combination with the EC2/S3 compatibility API (swift3 / s3api) are affected.",
   "severity": [
     {
       "type": "CVSS_V3",
       "score": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N"
     }
   ],
-  "affected": [],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "PyPI",
+        "name": "keystone"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "14.0.0"
+            },
+            {
+              "fixed": "26.1.1"
+            }
+          ]
+        }
+      ]
+    }
+  ],
   "references": [
     {
       "type": "ADVISORY",
@@ -23,6 +44,10 @@
       "type": "WEB",
       "url": "https://bugs.launchpad.net/keystone/+bug/2142138"
     },
+    {
+      "type": "PACKAGE",
+      "url": "https://github.com/openstack/keystone"
+    },
     {
       "type": "WEB",
       "url": "https://security.openstack.org/ossa/OSSA-2026-005.html"
@@ -37,8 +62,8 @@
       "CWE-863"
     ],
     "severity": "LOW",
-    "github_reviewed": false,
-    "github_reviewed_at": null,
+    "github_reviewed": true,
+    "github_reviewed_at": "2026-04-10T22:09:31Z",
     "nvd_published_at": "2026-04-10T03:16:02Z"
   }
 }
@@ -1,11 +1,12 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-52vj-fvrv-7q82",
-  "modified": "2026-04-10T06:31:38Z",
+  "modified": "2026-04-10T22:10:22Z",
   "published": "2026-04-10T06:31:38Z",
   "aliases": [
     "CVE-2026-6011"
   ],
+  "summary": "OpenClaw vulnerable to SSRF in src/agents/tools/web-fetch.ts",
   "details": "A weakness has been identified in OpenClaw up to 2026.1.26. Affected by this issue is some unknown functionality of the file src/agents/tools/web-fetch.ts of the component assertPublicHostname Handler. Executing a manipulation can lead to server-side request forgery. The attack can be executed remotely. This attack is characterized by high complexity. The exploitation is known to be difficult. The exploit has been made available to the public and could be used for attacks. Upgrading to version 2026.1.29 can resolve this issue. This patch is called b623557a2ec7e271bda003eb3ac33fbb2e218505. Upgrading the affected component is advised.",
   "severity": [
     {
@@ -14,10 +15,30 @@
     },
     {
       "type": "CVSS_V4",
-      "score": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+      "score": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P"
+    }
+  ],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "npm",
+        "name": "openclaw"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "2026.1.29"
+            }
+          ]
+        }
+      ]
     }
   ],
-  "affected": [],
   "references": [
     {
       "type": "ADVISORY",
@@ -28,7 +49,7 @@
       "url": "https://github.com/openclaw/openclaw/commit/b623557a2ec7e271bda003eb3ac33fbb2e218505#diff-06572a96a58dc510037d5efa622f9bec8519bc1beab13c9f251e97e657a9d4edR44"
     },
     {
-      "type": "WEB",
+      "type": "PACKAGE",
       "url": "https://github.com/openclaw/openclaw"
     },
     {
@@ -56,9 +77,9 @@
     "cwe_ids": [
       "CWE-918"
     ],
-    "severity": "MODERATE",
-    "github_reviewed": false,
-    "github_reviewed_at": null,
+    "severity": "LOW",
+    "github_reviewed": true,
+    "github_reviewed_at": "2026-04-10T22:10:02Z",
     "nvd_published_at": "2026-04-10T05:16:06Z"
   }
 }
@@ -0,0 +1,63 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-55v6-g8pm-pw4c",
+  "modified": "2026-04-10T22:09:15Z",
+  "published": "2026-04-10T22:09:15Z",
+  "aliases": [],
+  "summary": "rembg server is vulnerable to Server-Side Request Forgery (SSRF) and a weak default CORS configuration",
+  "details": "# GitHub Security Lab (GHSL) Vulnerability Report, rembg: `GHSL-2024-161`, `GHSL-2024-162`\n\nThe [GitHub Security Lab](https://securitylab.github.com) team has identified potential security vulnerabilities in [rembg](https://github.com/danielgatis/rembg).\n\nWe are committed to working with you to help resolve these issues. In this report you will find everything you need to effectively coordinate a resolution of these issues with the GHSL team.\n\nIf at any point you have concerns or questions about this process, please do not hesitate to reach out to us at `securitylab@github.com` (please include `GHSL-2024-161` or `GHSL-2024-162` as a reference). See also [this blog post](https://github.blog/2022-04-22-removing-the-stigma-of-a-cve/) written by GitHub's Advisory Curation team which explains what CVEs and advisories are, why they are important to track vulnerabilities and keep downstream users informed, the CVE assigning process, and how they are used to keep open source software secure.\n\nIf you are _NOT_ the correct point of contact for this report, please let us know!\n\n## Summary\n\nrembg server is vulnerable to Server-Side Request Forgery (SSRF) and a weak default CORS configuration, which may allow an attacker website to send requests to servers on the internal network and view image responses.\n\n## Project\n\nrembg\n\n## Tested Version\n\n[v2.0.57](https://github.com/danielgatis/rembg/releases/tag/v2.0.57)\n\n## Details\n\n### Issue 1: SSRF via `/api/remove` (`GHSL-2024-161`)\n\nThe [`/api/remove`](https://github.com/danielgatis/rembg/blob/d1e00734f8a996abf512a3a5c251c7a9a392c90a/rembg/commands/s_command.py#L237) endpoint takes a URL query parameter that allows an image to be fetched, processed and returned. An attacker may  be able to query this endpoint to view pictures hosted on the internal network of the rembg server.\n\n```python\n async def get_index(\n        url: str = Query(\n            default=..., description=\"URL of the image that has to be processed.\"\n        ),\n        commons: CommonQueryParams = Depends(),\n    ):\n        async with aiohttp.ClientSession() as session:\n            async with session.get(url) as response:\n                file = await response.read()\n                return await asyncify(im_without_bg)(file, commons)\n```\n\n#### Impact\n\nThis issue may lead to `Information Disclosure`.\n\n#### Remediation\n\nEnsure that the IP address specified is not a local address. If resolving a domain name, ensure that the resolved IP address is not local.\n\n#### Proof of Concept\n\n`curl -s \"http://localhost:7000/api/remove?url=http://0.0.0.0/secret.png\" -o output.png`\n\n\n### Issue 2: CORS misconfiguration (`GHSL-2024-162`)\n\nThe following [CORS middleware](https://github.com/danielgatis/rembg/blob/d1e00734f8a996abf512a3a5c251c7a9a392c90a/rembg/commands/s_command.py#L93) is setup incorrectly. All origins are reflected, which allows any website to send cross site requests to the rembg server and thus query any API. Even if authentication were to be enabled, `allow_credentials` is set to True, which would allow any website to send authenticated cross site requests.\n\n```python\n    app.add_middleware(\n        CORSMiddleware,\n        allow_credentials=True,\n        allow_origins=[\"*\"],\n        allow_methods=[\"*\"],\n        allow_headers=[\"*\"],\n    )\n\n```\n\n#### Impact\n\nThis issue may increase the severity of other vulnerabilities.\n\n#### Remediation\n\nCreate an allowlist of specific endpoints that can send cross site requests to the rembg server.\n\n#### Proof of Concept\n\nAn attacker website can host the following code:\n```javascript\nconst response = await fetch(\"http://localhost:7000/api/remove?url=https://0.0.0.0/secret.jpg\");\n```\nIf a victim running rembg server were to access the attacker website, the attacker website could read the file `secret.jpg` from the server hosted on the victim's internal network.\n\n## GitHub Security Advisories\n\nWe recommend you create a private [GitHub Security Advisory](https://help.github.com/en/github/managing-security-vulnerabilities/creating-a-security-advisory) for these findings. This also allows you to invite the GHSL team to collaborate and further discuss these findings in private before they are [published](https://help.github.com/en/github/managing-security-vulnerabilities/publishing-a-security-advisory).\n\n## Credit\n\nThese issues were discovered and reported by GHSL team member [@Kwstubbs (Kevin Stubbings)](https://github.com/Kwstubbs).\n\n## Contact\n\nYou can contact the GHSL team at `securitylab@github.com`, please include a reference to `GHSL-2024-161` or `GHSL-2024-162` in any communication regarding these issues.\n\n## Disclosure Policy\n\nThis report is subject to a 90-day disclosure deadline, as described in more detail in our [coordinated disclosure policy](https://securitylab.github.com/advisories#policy).",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"
+    }
+  ],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "PyPI",
+        "name": "rembg"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "2.0.75"
+            }
+          ]
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "type": "WEB",
+      "url": "https://github.com/danielgatis/rembg/security/advisories/GHSA-55v6-g8pm-pw4c"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/danielgatis/rembg/commit/07ad0d493057bddf821dcc3e2410eb7e065257c0"
+    },
+    {
+      "type": "PACKAGE",
+      "url": "https://github.com/danielgatis/rembg"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/danielgatis/rembg/releases/tag/v2.0.75"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-918"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": true,
+    "github_reviewed_at": "2026-04-10T22:09:15Z",
+    "nvd_published_at": null
+  }
+}
@@ -1,19 +1,40 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-8wrq-fv5f-pfp2",
-  "modified": "2026-04-10T09:31:15Z",
+  "modified": "2026-04-10T22:11:10Z",
   "published": "2026-04-10T09:31:15Z",
   "aliases": [
     "CVE-2026-1115"
   ],
+  "summary": "parisneo/lollms vulnerable to stored XSS in the social feature",
   "details": "A Stored Cross-Site Scripting (XSS) vulnerability was identified in the social feature of parisneo/lollms, affecting the latest version prior to 2.2.0. The vulnerability exists in the `create_post` function within `backend/routers/social/__init__.py`, where user-provided content is directly assigned to the `DBPost` model without sanitization. This allows attackers to inject and store malicious JavaScript, which is executed in the browsers of users viewing the Home Feed, including administrators. This can lead to account takeover, session hijacking, and wormable attacks. The issue is resolved in version 2.2.0.",
   "severity": [
     {
       "type": "CVSS_V3",
       "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"
     }
   ],
-  "affected": [],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "PyPI",
+        "name": "lollms"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "2.2.0"
+            }
+          ]
+        }
+      ]
+    }
+  ],
   "references": [
     {
       "type": "ADVISORY",
@@ -23,6 +44,10 @@
       "type": "WEB",
       "url": "https://github.com/parisneo/lollms/commit/9767b882dbc893c388a286856beeaead69b8292a"
     },
+    {
+      "type": "PACKAGE",
+      "url": "https://github.com/ParisNeo/lollms"
+    },
     {
       "type": "WEB",
       "url": "https://huntr.com/bounties/099aa4fe-7165-4337-889c-3fb4f1aa71aa"
@@ -33,8 +58,8 @@
       "CWE-79"
     ],
     "severity": "CRITICAL",
-    "github_reviewed": false,
-    "github_reviewed_at": null,
+    "github_reviewed": true,
+    "github_reviewed_at": "2026-04-10T22:11:10Z",
     "nvd_published_at": "2026-04-10T07:16:20Z"
   }
 }
@@ -0,0 +1,62 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-9cp7-j3f8-p5jx",
+  "modified": "2026-04-10T22:11:04Z",
+  "published": "2026-04-10T22:11:04Z",
+  "aliases": [],
+  "summary": "Daptin has Unauthenticated Path Traversal and Zip Slip",
+  "details": "### Impact\nThe `cloudstore.file.upload` action in `server/actions/action_cloudstore_file_upload.go` writes user-supplied filenames directly to disk without proper validation. \n\nThis allows unauthenticated attackers to perform path traversal and zip slip attacks, leading to arbitrary file write and potential remote code execution.\n\n**CVSS Score:** 10.0 Critical\n**CVSS Vector:** CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H\n**CWE:** CWE-22 (Path Traversal)\n\n### Patches\n\nUpgrade to a patched version once released. The vulnerability affects all versions <= v0.11.3 (latest).\n\n### Workarounds\n\nRestrict access to the cloudstore.file.upload action through authentication and authorization controls until a patch is available.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H"
+    }
+  ],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "Go",
+        "name": "github.com/daptin/daptin"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "0.12.0"
+            }
+          ]
+        }
+      ],
+      "database_specific": {
+        "last_known_affected_version_range": "<= 0.11.3"
+      }
+    }
+  ],
+  "references": [
+    {
+      "type": "WEB",
+      "url": "https://github.com/daptin/daptin/security/advisories/GHSA-9cp7-j3f8-p5jx"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/daptin/daptin/commit/8d626bbb14f82160a08cbca53e0749f475f5742c"
+    },
+    {
+      "type": "PACKAGE",
+      "url": "https://github.com/daptin/daptin"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-22"
+    ],
+    "severity": "CRITICAL",
+    "github_reviewed": true,
+    "github_reviewed_at": "2026-04-10T22:11:04Z",
+    "nvd_published_at": null
+  }
+}