Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
70
GitHub Actions
52
Go
3,904
Maven
5,000+
npm
5,000+
NuGet
967
pip
5,000+
Pub
13
RubyGems
1,062
Rust
1,374
Swift
54
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

625 advisories

Loading
IBM Db2 12.1.0 through 12.1.4 is vulnerable to authorization bypass when uploading to a remote... Moderate Unreviewed
CVE-2026-6938 was published May 27, 2026
A logic issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.7,... Moderate Unreviewed
CVE-2025-43289 was published May 27, 2026
A security vulnerability has been detected in QuantumNous new-api up to 0.12.1. This affects the... Low Unreviewed
CVE-2026-9306 was published May 26, 2026
Dell Unisphere for PowerMax vApp version prior to 10.0.0.2, contains an authorization bypass... Moderate Unreviewed
CVE-2022-34363 was published May 26, 2026
Improper Authorization vulnerability in Apache OFBiz Webtools. This issue affects Apache OFBiz:... Moderate Unreviewed
CVE-2026-45187 was published May 19, 2026
A vulnerability has been found in Tencent WeKnora up to 0.3.6. Affected by this issue is the... Low Unreviewed
CVE-2026-8786 was published May 18, 2026
Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and... Moderate Unreviewed
CVE-2026-34656 was published May 12, 2026
A flaw has been found in JeecgBoot 3.9.1. The impacted element is an unknown function of the file... Low Unreviewed
CVE-2026-8196 was published May 9, 2026
Improper authorization in Microsoft Teams allows an authorized attacker to disclose information... Critical Unreviewed
CVE-2026-33823 was published May 8, 2026
The Optoma CinemaX P2 projector (firmware TVOS-04.24.010.04.01, Android 8.0.0) exposes an HTTP... Critical Unreviewed
CVE-2026-30496 was published May 7, 2026
The Optoma CinemaX P2 projector (firmware TVOS-04.24.010.04.01, Android 8.0.0) exposes Android... High Unreviewed
CVE-2026-30495 was published May 7, 2026
A weakness has been identified in FlowiseAI Flowise up to 3.0.12. Affected by this vulnerability... Moderate Unreviewed
CVE-2026-8027 was published May 6, 2026
A vulnerability was detected in CodeCanyon Perfex CRM up to 3.4.1. This affects the function... Low Unreviewed
CVE-2026-7782 was published May 5, 2026
A vulnerability was detected in toeverything AFFiNE up to 0.26.3. This issue affects the function... Moderate Unreviewed
CVE-2026-7702 was published May 3, 2026
A security vulnerability has been detected in jsbroks COCO Annotator up to 0.11.1. Affected by... Moderate Unreviewed
CVE-2026-7681 was published May 3, 2026
The Booking for Appointments and Events Calendar – Amelia plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2026-6449 was published May 2, 2026
A security vulnerability has been detected in LinkStackOrg LinkStack up to 4.8.6. The affected... Low Unreviewed
CVE-2026-7502 was published May 1, 2026
A vulnerability was determined in OWAP DefectDojo up to 2.55.4. Affected by this vulnerability is... Low Unreviewed
CVE-2026-7510 was published May 1, 2026
The Otter Blocks plugin for WordPress is vulnerable to Purchase Verification Bypass in all... High Unreviewed
CVE-2026-2892 was published Apr 30, 2026
An authorization vulnerability in MphRx's Minerva V3.6.0, specifically in the '/minerva/moUser... High Unreviewed
CVE-2026-5781 was published Apr 28, 2026
A weakness has been identified in mettle sendportal up to 3.0.1. Affected is the function destroy... Moderate Unreviewed
CVE-2026-7145 was published Apr 27, 2026
A security flaw has been discovered in 1000 Projects Portfolio Management System MCA 1.0. This... Moderate Unreviewed
CVE-2026-7144 was published Apr 27, 2026
Vulnerability in the Oracle Financial Services Customer Screening product of Oracle Financial... High Unreviewed
CVE-2026-34320 was published Apr 21, 2026
Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of... Moderate Unreviewed
CVE-2026-34321 was published Apr 21, 2026
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web... Moderate Unreviewed
CVE-2026-34315 was published Apr 21, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database