GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 31,043
Composer 5,887
Erlang 70
GitHub Actions 52
Go 3,904
Maven 6,602
npm 6,308
NuGet 967
pip 5,167
Pub 13
RubyGems 1,062
Rust 1,374
Swift 54

Unreviewed advisories

All unreviewed 304,650

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

145,567 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In the Linux kernel, the following vulnerability has been resolved: bpf/bonding: reject vlan... Moderate Unreviewed

CVE-2026-23310 was published Mar 25, 2026

With valid login credentials, URL Redirection to Untrusted Site ('Open Redirect'), Server-Side... Moderate Unreviewed

CVE-2026-44598 was published May 26, 2026

Default configurations of Apache Shiro have a session fixation vulnerability. This issue affects... Moderate Unreviewed

CVE-2026-43827 was published May 26, 2026

In the Linux kernel, the following vulnerability has been resolved: tracing: Add NULL pointer... Moderate Unreviewed

CVE-2026-23309 was published Mar 25, 2026

In the Linux kernel, the following vulnerability has been resolved: ASoC: SDCA: Add allocation... Moderate Unreviewed

CVE-2026-23301 was published Mar 25, 2026

bzip2 contains an off‑by‑one error in the bzip2recover utility. When processing a specially... Moderate Unreviewed

CVE-2026-42250 was published May 28, 2026

A user with physical access to a smartphone can bypass authentication mechanism of Kidsview... Moderate Unreviewed

CVE-2026-8990 was published May 28, 2026

Roundcube's HTML sanitization path for message rendering allows loopback, localhost, RFC1918,... Moderate Unreviewed

CVE-2026-9818 was published May 28, 2026

Default configurations of Apache Shiro send sensitive cookies in HTTPS session without 'Secure'... Moderate Unreviewed

CVE-2026-43828 was published May 26, 2026

In the Linux kernel, the following vulnerability has been resolved: can: ems_usb:... Moderate Unreviewed

CVE-2026-23307 was published Mar 25, 2026

In the Linux kernel, the following vulnerability has been resolved: pinctrl: equilibrium: fix... Moderate Unreviewed

CVE-2026-23308 was published Mar 25, 2026

In the Linux kernel, the following vulnerability has been resolved: net: annotate data-races... Moderate Unreviewed

CVE-2026-23302 was published Mar 25, 2026

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix NULL pointer deref... Moderate Unreviewed

CVE-2026-23304 was published Mar 25, 2026

In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix panic when... Moderate Unreviewed

CVE-2026-23300 was published Mar 25, 2026

In the Linux kernel, the following vulnerability has been resolved: smb: client: Don't log... Moderate Unreviewed

CVE-2026-23303 was published Mar 25, 2026

FlowIntel up to version 3.3.0 contains a server-side request forgery (SSRF) vulnerability in the... Moderate Unreviewed

CVE-2026-9813 was published May 28, 2026

Dlink DWR-X1820 router uses weak default password generated from its IMEI number and does not... Moderate Unreviewed

CVE-2026-4377 was published May 28, 2026

A flaw was found in the X.Org X server. This out-of-bounds read vulnerability in the XKB geometry... Moderate Unreviewed

CVE-2026-34000 was published May 5, 2026

A flaw was found in the X.Org X server. This vulnerability, an out-of-bounds read, affects the... Moderate Unreviewed

CVE-2026-34002 was published May 5, 2026

A flaw was found in libsoup. When establishing HTTPS tunnels through a configured HTTP proxy,... Moderate Unreviewed

CVE-2026-5119 was published Mar 30, 2026

The Visualizer: Tables and Charts Manager for WordPress plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2026-8689 was published May 28, 2026

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9 before 18.10.7,... Moderate Unreviewed

CVE-2026-9807 was published May 28, 2026

The PDF Embedder plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed

CVE-2026-7526 was published May 28, 2026

Cross Site Scripting vulnerability in Follet School Solutions Destiny before v22.0.1 AU1 allows a... Moderate Unreviewed

CVE-2024-47097 was published May 28, 2026

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2026-7048 was published May 28, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

145,567 advisories