id stringlengths 13 19 | title stringlengths 0 182 | description stringlengths 130 1.77k ⌀ | patches listlengths 1 22 | cwe listlengths 0 5 |
|---|---|---|---|---|
PYSEC-2026-1155 | Apache Superset vulnerable to improper SQL authorization | null | [
{
"url": "https://github.com/apache/superset/commit/56f0103b5771d477dd106272abbd8021c9ea7506.patch",
"patch_text_b64": "RnJvbSA1NmYwMTAzYjU3NzFkNDc3ZGQxMDYyNzJhYmJkODAyMWM5ZWE3NTA2IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBEYW5pZWwgVmF6IEdhc3BhciA8ZGFuaWVsdmF6Z2FzcGFyQGdtYWlsLmNvbT4KRGF0ZTogV2VkLCAyOSBNYXkg... | [] |
CVE-2023-30186 | A use after free issue discovered in ONLYOFFICE DocumentServer 4.0.3 through 7.3.2 allows remote attackers to run arbitrary code via crafted JavaScript file. | [
{
"url": "https://github.com/ONLYOFFICE/core/commit/2b6ad83b36afd9845085b536969d366d1d61150a.patch",
"patch_text_b64": "RnJvbSAyYjZhZDgzYjM2YWZkOTg0NTA4NWI1MzY5NjlkMzY2ZDFkNjExNTBhIE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBPbGVnIEtvcnNodWwgPE9sZWcuS29yc2h1bEBvbmx5b2ZmaWNlLmNvbT4KRGF0ZTogU2F0LCA0IEZlYiAyMDIz... | [
"n/a"
] | |
PYSEC-2026-1558 | LlamaIndex vulnerable to Path Traversal attack through its encode_image function | null | [
{
"url": "https://github.com/run-llama/llama_index/commit/cdeaab91a204d1c3527f177dac37390327aef274.patch",
"patch_text_b64": "RnJvbSBjZGVhYWI5MWEyMDRkMWMzNTI3ZjE3N2RhYzM3MzkwMzI3YWVmMjc0IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiAiQ2xlbGlhIChBc3RyYSkgQmVydGVsbGkiIDwxMzM2MzY4NzkrQXN0cmFCZXJ0QHVzZXJzLm5vcmVwbH... | [] |
PYSEC-2026-2240 | null | [
{
"url": "https://github.com/onnx/onnx/commit/e30c6935d67cc3eca2fa284e37248e7c0036c46b.patch",
"patch_text_b64": "RnJvbSBlMzBjNjkzNWQ2N2NjM2VjYTJmYTI4NGUzNzI0OGU3YzAwMzZjNDZiIE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBUaS1UYWkgV2FuZyA8dGl0YWl3YW5nQG1pY3Jvc29mdC5jb20+CkRhdGU6IFdlZCwgMTggTWFyIDIwMjYgMDk6NDg6Mz... | [] | |
PYSEC-2026-1662 | MLflow Path Traversal Vulnerability | null | [
{
"url": "https://github.com/mlflow/mlflow/commit/5044878da0c1851ccfdd5c0a867157ed9a502fbc.patch",
"patch_text_b64": "RnJvbSA1MDQ0ODc4ZGEwYzE4NTFjY2ZkZDVjMGE4NjcxNTdlZDlhNTAyZmJjIE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBIYXJ1dGFrYSBLYXdhbXVyYSA8aGthd2FtdXJhMDEzMEBnbWFpbC5jb20+CkRhdGU6IFdlZCwgMTMgRGVjIDIwMj... | [] |
PYSEC-2026-1503 | Label Studio allows Server-Side Request Forgery in the S3 Storage Endpoint | null | [
{
"url": "https://github.com/HumanSignal/label-studio/commit/06a2b29c1208e1878ccae66e6b84c8b24598fa79.patch",
"patch_text_b64": "RnJvbSAwNmEyYjI5YzEyMDhlMTg3OGNjYWU2NmU2Yjg0YzhiMjQ1OThmYTc5IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBKbyBCb290aCA8am8ubS5ib290aEBnbWFpbC5jb20+CkRhdGU6IFR1ZSwgNCBGZWIgMjAyNSAxNDo... | [] |
CVE-2026-55689 | OpenFGA: OIDC audience validation skipped when --authn-oidc-audience is unset | OpenFGA is an authorization/permission engine built for developers. Prior to 1.18.0, OpenFGA's OIDC authenticator skipped JWT audience validation when authn.method was set to oidc, authn.oidc.issuer was configured, and authn.oidc.audience was not set, allowing a token minted for an unrelated service by the same identit... | [
{
"url": "https://github.com/openfga/openfga/commit/44596773b2e62738720ef215bf7fa04352954271.patch",
"patch_text_b64": "RnJvbSA0NDU5Njc3M2IyZTYyNzM4NzIwZWYyMTViZjdmYTA0MzUyOTU0MjcxIE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBBZHJpYW4gVGFtIDxhZHJpYW4udGFtQG9rdGEuY29tPgpEYXRlOiBUdWUsIDE2IEp1biAyMDI2IDE1OjA2OjI0... | [
"CWE-287"
] |
GHSA-mc85-72gr-vm9f | Tesla has decompression bomb on response body | null | [
{
"url": "https://github.com/elixir-tesla/tesla/commit/340f75b5d191dc747ef7ac6365bd002d1cd55a9d.patch",
"patch_text_b64": "RnJvbSAzNDBmNzViNWQxOTFkYzc0N2VmN2FjNjM2NWJkMDAyZDFjZDU1YTlkIE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBZb3JkaXMgUHJpZXRvIDx5b3JkaXMucHJpZXRvQGdtYWlsLmNvbT4KRGF0ZTogVHVlLCAyIEp1biAyMDI2I... | [
"CWE-409"
] |
GHSA-6cj7-v55x-8mwr | null | [{"url":"https://github.com/python/cpython/commit/0478bd83d82b255e0f29f613367a59d261e7eaa2.patch","p(...TRUNCATED) | [
"CWE-22"
] | |
PYSEC-2026-2304 | null | [{"url":"https://github.com/vllm-project/vllm/commit/2b3006076c5e9bc4cda9e03e3641388de3c5c286.patch"(...TRUNCATED) | [] |
Description
This dataset, CIRCL/vulnerability-cwe-patch, provides structured, real-world vulnerabilities enriched with CWE identifiers and corresponding patches from platforms like GitHub and GitLab. It is designed to support the development of tools for vulnerability classification, triage, and automated remediation. Each entry includes metadata such as CVE/GHSA ID, a description, CWE categorization, and links to verified patch commits with associated diff content and commit messages.
The dataset is automatically extracted via a pipeline that fetches vulnerability records from multiple sources, filters out entries without patches, and verifies the accessibility of patch links. Patches are then fetched, base64-encoded, and stored alongside commit messages for the training and evaluation of machine learning models.
The dataset consists of 39,260 vulnerabilities and 49,001 associated patches. For training purposes, only patches corresponding to vulnerabilities annotated with at least one CWE are considered.
How to use with datasets
>>> import json
>>> from datasets import load_dataset
>>> dataset = load_dataset("CIRCL/vulnerability-cwe-patch")
>>> vulnerabilities = ["CVE-2025-60249", "CVE-2025-32413"]
>>> filtered_entries = dataset.filter(lambda elem: elem["id"] in vulnerabilities)
>>> for entry in filtered_entries["train"]:
... print(entry["cwe"])
... for patch in entry["patches"]:
... print(f" {patch['commit_message']}")
...
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
[PATCH] fix: [security] Fixed a stored XSS vulnerability in user bios. Thanks to Dawid Czarnecki for reporting the issue.
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
[PATCH] fix: [security] sanitize user input in comments, bundles, and sightings - Escaped untrusted data in templates and tables to prevent XSS - Replaced unsafe innerHTML assignments with createElement/textContent - Encoded dynamic URLs using encodeURIComponent - Improved validation in Comment, Bundle, and Sighting models Credit: @Wachizungu
Schema
Each example contains:
- id: Vulnerability identifier (e.g., CVE-2023-XXXX, GHSA-XXXX)
- title: Human-readable title of the vulnerability
- description: Detailed vulnerability description
- patches: List of patch records, each with:
url: Verified patch URL (GitHub/GitLab)
patch_text_b64: Base64-encoded unified diff
commit_message: Associated commit message
- cwe: List of CWE identifiers and names
The vulnerabilities can be sourced from:
- NVD CVE List — enriched with commit references
- GitHub Security Advisories (GHSA)
- GitLab advisories
- CSAF feeds from vendors including Red Hat, Cisco, and CISA
Use Cases
The dataset supports a range of security-focused machine learning tasks:
* Vulnerability classification
* CWE prediction from descriptions
* Patch generation from natural language
* Commit message understanding
Associated Code
The dataset is generated with the extraction pipeline from vulnerability-lookup/ML-Gateway, which includes logic for fetching, filtering, validating, and encoding patch data.
- Downloads last month
- 307