GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
3 advisories
Evolver: Path Traversal via `--out` flag in `fetch` command allows Arbitrary File Write
High
GHSA-r466-rxw4-3j9j
was published
for
@evomap/evolver
(npm)
Apr 22, 2026
Evolver: Command Injection via `execSync` in `_extractLLM()` function allows Remote Code Execution
Critical
GHSA-j5w5-568x-rq53
was published
for
@evomap/evolver
(npm)
Apr 22, 2026
Evolver has Prototype Pollution via `Object.assign()` in its mailbox store operations
Moderate
GHSA-2cjr-5v3h-v2w4
was published
for
@evomap/evolver
(npm)
Apr 22, 2026
ProTip!
Advisories are also available from the
GraphQL API