GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 31,043
Composer 5,887
Erlang 70
GitHub Actions 52
Go 3,904
Maven 6,602
npm 6,308
NuGet 967
pip 5,167
Pub 13
RubyGems 1,062
Rust 1,374
Swift 54

Unreviewed advisories

All unreviewed 304,472

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

350 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Netatalk 3.1.2 through 4.4.2 is compiled without FORTIFY_SOURCE, which disables built-in buffer... Low Unreviewed

CVE-2026-44071 was published May 21, 2026

Insufficient policy enforcement in ServiceWorker in Google Chrome on prior to 148.0.7778.179... Moderate Unreviewed

CVE-2026-9116 was published May 20, 2026

Insufficient policy enforcement in Service Worker in Google Chrome on prior to 148.0.7778.179... Moderate Unreviewed

CVE-2026-9115 was published May 20, 2026

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151. High Unreviewed

CVE-2026-8969 was published May 19, 2026

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151 and... High Unreviewed

CVE-2026-8962 was published May 19, 2026

Sandbox escape in Firefox and Firefox Focus for Android. This vulnerability was fixed in Firefox... High Unreviewed

CVE-2026-8945 was published May 19, 2026

Inappropriate implementation in Media in Google Chrome on iOS prior to 148.0.7778.168 allowed a... High Unreviewed

CVE-2026-8585 was published May 14, 2026

Insufficient policy enforcement in WebXR in Google Chrome on Android prior to 148.0.7778.168... Moderate Unreviewed

CVE-2026-8583 was published May 14, 2026

Insufficient policy enforcement in AI in Google Chrome prior to 148.0.7778.168 allowed a remote... Low Unreviewed

CVE-2026-8568 was published May 14, 2026

Insufficient policy enforcement in Network in Google Chrome on Android prior to 148.0.7778.168... Low Unreviewed

CVE-2026-8572 was published May 14, 2026

Insufficient policy enforcement in IFrame Sandbox in Google Chrome on Windows prior to 148.0.7778... Moderate Unreviewed

CVE-2026-8563 was published May 14, 2026

Insufficient policy enforcement in GPU in Google Chrome on Android prior to 148.0.7778.168... High Unreviewed

CVE-2026-8571 was published May 14, 2026

Protection Mechanism Failure in Zoom Workplace for iOS before version 7.0.0 may allow an... Low Unreviewed

CVE-2026-30904 was published May 13, 2026

Heym before 0.0.21 contains a sandbox escape vulnerability in the custom Python tool executor... High Unreviewed

CVE-2026-45227 was published May 13, 2026

Sandbox escape in the Profile Backup component. This vulnerability was fixed in Firefox 150.0.3. Critical Unreviewed

CVE-2026-8401 was published May 12, 2026

A validation issue was addressed with improved logic. This issue is fixed in iOS 18.7.9 and... High Unreviewed

CVE-2026-43660 was published May 11, 2026

Inappropriate implementation in Cast in Google Chrome prior to 148.0.7778.96 allowed a remote... Moderate Unreviewed

CVE-2026-8009 was published May 6, 2026

Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed an... Moderate Unreviewed

CVE-2026-8004 was published May 6, 2026

Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed a... High Unreviewed

CVE-2026-8018 was published May 6, 2026

Inappropriate implementation in Preload in Google Chrome prior to 148.0.7778.96 allowed a remote... Moderate Unreviewed

CVE-2026-8014 was published May 6, 2026

Insufficient policy enforcement in Search in Google Chrome prior to 148.0.7778.96 allowed a... Moderate Unreviewed

CVE-2026-8011 was published May 6, 2026

Inappropriate implementation in Companion in Google Chrome on Mac prior to 148.0.7778.96 allowed... High Unreviewed

CVE-2026-7978 was published May 6, 2026

Inappropriate implementation in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed a... High Unreviewed

CVE-2026-7963 was published May 6, 2026

Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed an... Low Unreviewed

CVE-2026-7937 was published May 6, 2026

Insufficient policy enforcement in Downloads in Google Chrome prior to 148.0.7778.96 allowed a... Moderate Unreviewed

CVE-2026-7932 was published May 6, 2026

Previous1…14 Next

Previous 1 2 3 4 5 … 13 14 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

350 advisories