Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
70
GitHub Actions
52
Go
3,904
Maven
5,000+
npm
5,000+
NuGet
967
pip
5,000+
Pub
13
RubyGems
1,062
Rust
1,374
Swift
54
Unreviewed advisories
All unreviewed
5,000+

3 advisories

Loading
shopper/framework: Race condition on Discount.usage_limit allows silent over-redemption Moderate
GHSA-9rh9-hf3w-9fgg was published for shopper/cart (Composer) May 18, 2026
baradika Credited to baradika
shopper/framework: Authorization bypass in multiple Livewire admin components High
GHSA-f946-9qp6-vgch was published for shopper/framework (Composer) May 18, 2026
baradika Credited to baradika
Authenticated Sharp users can download unrelated Laravel Storage objects through the generic download endpoint High
CVE-2026-44692 was published for code16/sharp (Composer) May 15, 2026
baradika Credited to baradika
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database