GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,945
Composer 5,455
Erlang 46
GitHub Actions 48
Go 3,343
Maven 6,345
npm 5,392
NuGet 881
pip 4,550
Pub 12
RubyGems 1,013
Rust 1,203
Swift 51

Unreviewed advisories

All unreviewed 295,556

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

343 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability was detected in PuTTY 0.83. Affected is the function eddsa_verify of the file... Moderate Unreviewed

CVE-2026-4115 was published Mar 22, 2026

A flaw has been found in janmojzis tinyssh up to 20250501. Impacted is an unknown function of the... Low Unreviewed

CVE-2026-4541 was published Mar 22, 2026

A vulnerability was identified in Yi Technology YI Home Camera 2 2.1.1_20171024151200. This... High Unreviewed

CVE-2026-4478 was published Mar 20, 2026

The GL-iNet Comet (GL-RM1) KVM does not sufficiently verify the authenticity of uploaded firmware... High Unreviewed

CVE-2026-32290 was published Mar 17, 2026

JetKVM prior to 0.5.4 does not verify the authenticity of downloaded firmware files. An attacker... High Unreviewed

CVE-2026-32294 was published Mar 17, 2026

HCL AION is affected by a vulnerability where model packaging and distribution mechanisms may not... Low Unreviewed

CVE-2025-52645 was published Mar 16, 2026

HCL AION is affected by a vulnerability where container base images are not properly... Moderate Unreviewed

CVE-2025-52638 was published Mar 16, 2026

Insufficient verification of data authenticity in Windows App Installer allows an unauthorized... Moderate Unreviewed

CVE-2026-23656 was published Mar 10, 2026

A vulnerability was determined in mkj Dropbear up to 2025.89. Impacted is the function unpackneg... Moderate Unreviewed

CVE-2026-3706 was published Mar 8, 2026

Insufficient Verification of Data Authenticity, Improper Handling of Exceptional Conditions... High Unreviewed

CVE-2026-30798 was published Mar 5, 2026

An authenticated arbitrary file upload vulnerability in Cohesity TranZman Migration Appliance... High Unreviewed

CVE-2025-63910 was published Mar 3, 2026

A vulnerability was found in Dataease SQLBot up to 1.5.1. This impacts the function... Moderate Unreviewed

CVE-2025-15598 was published Mar 3, 2026

The Fluent Forms Pro Add On Pack plugin for WordPress is vulnerable to Insufficient Verification... High Unreviewed

CVE-2026-2428 was published Feb 27, 2026

Unitree Go2 firmware versions 1.1.7 through 1.1.11, when used with the Unitree Go2 Android... Moderate Unreviewed

CVE-2026-27510 was published Feb 26, 2026

A vulnerability was detected in Cesanta Mongoose up to 7.20. This impacts the function... Moderate Unreviewed

CVE-2026-2968 was published Feb 23, 2026

The The Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu,... Moderate Unreviewed

CVE-2026-2385 was published Feb 22, 2026

The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login... Moderate Unreviewed

CVE-2025-14444 was published Feb 18, 2026

User interface (ui) misrepresentation of critical information in Microsoft Exchange Server allows... Moderate Unreviewed

CVE-2026-21527 was published Feb 10, 2026

A vulnerability exists in NGINX OSS and NGINX Plus when configured to proxy to upstream Transport... High Unreviewed

CVE-2026-1642 was published Feb 4, 2026

The Rede Itaú for WooCommerce plugin for WordPress is vulnerable to order status manipulation due... Moderate Unreviewed

CVE-2026-0939 was published Jan 16, 2026

Insufficient Verification of Data Authenticity vulnerability in TECNO Mobile com.Afmobi... Critical Unreviewed

CVE-2025-15385 was published Jan 6, 2026

A security vulnerability has been detected in PbootCMS up to 3.2.12. The affected element is the... Moderate Unreviewed

CVE-2025-15154 was published Dec 28, 2025

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a... Low Unreviewed

CVE-2025-59700 was published Dec 2, 2025

Unauthenticated Arbitrary File Upload (upgrade_contents.php) in DB Electronica Telecomunicazioni... Critical Unreviewed

CVE-2025-66255 was published Nov 26, 2025

The Subscriptions & Memberships for PayPal plugin for WordPress is vulnerable to fake payment... Moderate Unreviewed

CVE-2025-12752 was published Nov 22, 2025

Previous1…14 Next

Previous 1 2 3 4 5 … 13 14 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

343 advisories