Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
70
GitHub Actions
52
Go
3,904
Maven
5,000+
npm
5,000+
NuGet
967
pip
5,000+
Pub
13
RubyGems
1,062
Rust
1,374
Swift
54
Unreviewed advisories
All unreviewed
5,000+

159,159 advisories

Loading
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ... Moderate Unreviewed
CVE-2022-21618 was published Oct 19, 2022
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ... Moderate Unreviewed
CVE-2022-21294 was published Feb 11, 2022
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ... Moderate Unreviewed
CVE-2022-21299 was published Feb 11, 2022
The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state... Moderate Unreviewed
CVE-2015-2808 was published May 13, 2022
Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in... Moderate Unreviewed
CVE-2015-6564 was published May 14, 2022
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ... Moderate Unreviewed
CVE-2022-21293 was published Feb 11, 2022
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ... Moderate Unreviewed
CVE-2022-21283 was published Feb 11, 2022
A weakness has been identified in TeamSpeak 3 Server up to 3.13.7. This affects the function... Moderate Unreviewed
CVE-2026-4390 was published May 27, 2026
Missing Authorization vulnerability in Mamunur Rashid The Post Grid allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2026-49054 was published May 27, 2026
A vulnerability was detected in TeamSpeak 3 Server up to 3.13.7. This issue affects some unknown... Moderate Unreviewed
CVE-2026-4392 was published May 27, 2026
A security vulnerability has been detected in TeamSpeak 3 Server up to 3.13.7. This vulnerability... Moderate Unreviewed
CVE-2026-4391 was published May 27, 2026
Missing Authorization vulnerability in Bizswoop Account Manager for WooCommerce allows Exploiting... Moderate Unreviewed
CVE-2022-41656 was published May 27, 2026
Jenkins buildgraph-view Plugin 1.8 and earlier does not escape the build URL, resulting in a... Moderate Unreviewed
CVE-2026-48927 was published May 27, 2026
A cross-site request forgery (CSRF) vulnerability in Jenkins Multijob Plugin 662.vd2e0001f6b_b_d... Moderate Unreviewed
CVE-2026-9674 was published May 27, 2026
Jenkins AppSpider Plugin 1.0.17 and earlier does not perform a permission check in a method... Moderate Unreviewed
CVE-2026-48923 was published May 27, 2026
A cross-site request forgery (CSRF) vulnerability in Jenkins GitHub Integration Plugin 0.7.3 and... Moderate Unreviewed
CVE-2026-48925 was published May 27, 2026
Jenkins Bitbucket OAuth Plugin 0.17 and earlier does not restrict the redirect URL after login,... Moderate Unreviewed
CVE-2026-48924 was published May 27, 2026
Jenkins Active Directory Plugin 2.41 and earlier follows LDAP referrals by default. Moderate Unreviewed
CVE-2026-48918 was published May 27, 2026
Jenkins LDAP Plugin 807.v7d7de30930cf and earlier follows LDAP referrals. Moderate Unreviewed
CVE-2026-48916 was published May 27, 2026
IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to running out of memory... Moderate Unreviewed
CVE-2026-6052 was published May 27, 2026
IBM WebSphere Application Server - Liberty 19.0.0.7 through 26.0.0.5 and IBM WebSphere... Moderate Unreviewed
CVE-2026-4410 was published May 27, 2026
SailingLab AppLock (aka com.alpha.applock) 4.3.8 for Android allows a local attacker to trigger... Moderate Unreviewed
CVE-2025-68709 was published May 26, 2026
StrongBox in Android before security patch level 2026-04-05 has a vulnerability of High Severity,... Moderate Unreviewed
CVE-2025-48651 was published Apr 6, 2026
Unspecified vulnerability in IBM Java 8 before SR1 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2015-1916 was published May 17, 2022
Kirby CMS's content locks disclose IDs and emails of inaccessible users from `users.access/list` permissions Moderate
CVE-2026-45334 was published for getkirby/cms (Composer) May 27, 2026
matte1782 Credited to matte1782
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database