GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,723
Composer 5,428
Erlang 45
GitHub Actions 47
Go 3,309
Maven 6,325
npm 5,288
NuGet 876
pip 4,530
Pub 12
RubyGems 1,009
Rust 1,195
Swift 51

Unreviewed advisories

All unreviewed 295,189

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,077 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Deserialization of Untrusted Data vulnerability in Miguel Useche JS Archive List jquery-archive... High Unreviewed

CVE-2026-32513 was published Mar 25, 2026

NVIDIA Megatron-LM contains a vulnerability in the hybrid conversion script where an Attacker may... High Unreviewed

CVE-2025-33248 was published Mar 24, 2026

NVIDIA Megatron LM contains a vulnerability in quantization configuration loading, which could... High Unreviewed

CVE-2025-33247 was published Mar 24, 2026

NVIDIA NeMo Framework contains a vulnerability where an attacker may cause remote code execution.... High Unreviewed

CVE-2026-24159 was published Mar 24, 2026

NVIDIA Megatron-LM contains a vulnerability in inferencing where an Attacker may cause an RCE by... High Unreviewed

CVE-2026-24151 was published Mar 24, 2026

NVIDIA Megatron-LM contains a vulnerability in checkpoint loading where an Attacker may cause an... High Unreviewed

CVE-2026-24152 was published Mar 24, 2026

NVIDIA NeMo Framework contains a vulnerability in checkpoint loading where an attacker could... High Unreviewed

CVE-2026-24157 was published Mar 24, 2026

NVIDIA Model Optimizer for Windows and Linux contains a vulnerability in the ONNX quantization... High Unreviewed

CVE-2026-24141 was published Mar 24, 2026

NVIDIA Megatron-LM contains a vulnerability in checkpoint loading where an Attacker may cause an... High Unreviewed

CVE-2026-24150 was published Mar 24, 2026

Deserialization of Untrusted Data vulnerability in DTStack chunjun (‎chunjun-core/src/main/java... High Unreviewed

CVE-2026-4735 was published Mar 24, 2026

Deserialization of Untrusted Data vulnerability in TotalSuite TotalContest Lite allows Object... High Unreviewed

CVE-2026-0677 was published Mar 20, 2026

BMC FootPrints ITSM versions 20.20.02 through 20.24.01.001 contain a deserialization of untrusted... High Unreviewed

CVE-2025-71260 was published Mar 19, 2026

Deserialization of Untrusted Data vulnerability in Membership Software WishList Member X allows... High Unreviewed

CVE-2026-25445 was published Mar 19, 2026

Deserialization of Untrusted Data vulnerability in BuddhaThemes ColorFolio - Freelance Designer... High Unreviewed

CVE-2026-27096 was published Mar 19, 2026

Apache Spark: Spark History Server Code Execution Vulnerability High

CVE-2025-54920 was published for org.apache.spark:spark-core_2.10 (Maven) Mar 16, 2026

Deserialization of Untrusted Data vulnerability in Crocoblock JetEngine jet-engine allows Object... High Unreviewed

CVE-2026-32355 was published Mar 13, 2026

SGLangs `replay_request_dump.py` contains an insecure pickle.load() without validation and proper deserialization High

CVE-2026-3989 was published for sglang (pip) Mar 12, 2026

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to... High Unreviewed

CVE-2026-26114 was published Mar 10, 2026

Deserialization of untrusted data in Windows System Image Manager allows an authorized attacker... High Unreviewed

CVE-2026-25166 was published Mar 10, 2026

CWE-502: Deserialization of untrusted data vulnerability exists that could lead to loss of... High Unreviewed

CVE-2026-1286 was published Mar 10, 2026

CWE‑502: Deserialization of Untrusted Data vulnerability exists that could cause arbitrary code... High Unreviewed

CVE-2025-11739 was published Mar 10, 2026

The JS Archive List plugin for WordPress is vulnerable to PHP Object Injection in all versions up... High Unreviewed

CVE-2026-2020 was published Mar 7, 2026

Avira Internet Security contains a deserialization of untrusted data vulnerability in the System... High Unreviewed

CVE-2026-27749 was published Mar 5, 2026

Deserialization of Untrusted Data vulnerability in BoldThemes Celeste celeste allows Object... High Unreviewed

CVE-2026-27369 was published Mar 5, 2026

Deserialization of Untrusted Data vulnerability in NextScripts NextScripts social-networks-auto... High Unreviewed

CVE-2026-27379 was published Mar 5, 2026

Previous1…44 Next

Previous 1 2 3 4 5 … 43 44 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,077 advisories