GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,653
Composer 5,403
Erlang 44
GitHub Actions 47
Go 3,295
Maven 6,324
npm 5,267
NuGet 876
pip 4,524
Pub 12
RubyGems 1,008
Rust 1,194
Swift 51

Unreviewed advisories

All unreviewed 294,706

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

25,403 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A privilege escalation vulnerability exists in Rockwell Automation FactoryTalk® Service Platform... Critical Unreviewed

CVE-2024-21915 was published Feb 16, 2024

Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 149. Critical Unreviewed

CVE-2026-4723 was published Mar 24, 2026

Sandbox escape due to use-after-free in the Graphics: Canvas2D component. This vulnerability... Critical Unreviewed

CVE-2026-4725 was published Mar 24, 2026

Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 149 and... Critical Unreviewed

CVE-2026-4701 was published Mar 24, 2026

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox <... Critical Unreviewed

CVE-2026-4698 was published Mar 24, 2026

Undefined behavior in the WebRTC: Signaling component. This vulnerability affects Firefox < 149... Critical Unreviewed

CVE-2026-4705 was published Mar 24, 2026

Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 149 and... Critical Unreviewed

CVE-2026-4717 was published Mar 24, 2026

Uninitialized memory in the Graphics: Canvas2D component. This vulnerability affects Firefox <... Critical Unreviewed

CVE-2026-4715 was published Mar 24, 2026

Use-after-free in the Widget: Cocoa component. This vulnerability affects Firefox < 149 and... Critical Unreviewed

CVE-2026-4711 was published Mar 24, 2026

Incorrect boundary conditions, uninitialized memory in the JavaScript Engine component. This... Critical Unreviewed

CVE-2026-4716 was published Mar 24, 2026

Use-after-free in the CSS Parsing and Computation component. This vulnerability affects Firefox <... Critical Unreviewed

CVE-2026-4691 was published Mar 24, 2026

NVIDIA APEX for Linux contains a vulnerability where an unauthorized attacker could cause a... Critical Unreviewed

CVE-2025-33244 was published Mar 24, 2026

A Missing Authentication for Critical Function vulnerability in Pharos Controls Mosaic Show... Critical Unreviewed

CVE-2026-2417 was published Mar 24, 2026

Mitigation bypass in the Networking: HTTP component. This vulnerability affects Firefox < 149 and... Critical Unreviewed

CVE-2026-4700 was published Mar 24, 2026

JIT miscompilation in the JavaScript Engine component. This vulnerability affects Firefox < 149... Critical Unreviewed

CVE-2026-4702 was published Mar 24, 2026

Use-after-free in the Layout: Text and Fonts component. This vulnerability affects Firefox < 149,... Critical Unreviewed

CVE-2026-4696 was published Mar 24, 2026

Sandbox escape due to use-after-free in the Disability Access APIs component. This vulnerability... Critical Unreviewed

CVE-2026-4688 was published Mar 24, 2026

Use of hard coded credentials in GoHarbor Harbor version 2.15.0 and below, allows attackers to... Critical Unreviewed

CVE-2026-4404 was published Mar 23, 2026

Zimbra Collaboration Suite (ZCS) PostJournal service version 8.8.15 contains a command injection... Critical Unreviewed

CVE-2025-71275 was published Mar 24, 2026

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability... Critical Unreviewed

CVE-2026-2298 was published Mar 23, 2026

Download Accelerator Plus DAP 10.0.6.0 contains a structured exception handler buffer overflow... Critical Unreviewed

CVE-2019-25628 was published Mar 24, 2026

Tabs Mail Carrier 2.5.1 contains a buffer overflow vulnerability in the MAIL FROM SMTP command... Critical Unreviewed

CVE-2019-25646 was published Mar 24, 2026

CWE-20 vulnerability in MolotovCherry Android-ImageMagick7.This issue affects Android... Critical Unreviewed

CVE-2026-4755 was published Mar 24, 2026

Improper Control of Generation of Code ('Code Injection') vulnerability in dendibakh perf-ninja ... Critical Unreviewed

CVE-2026-4745 was published Mar 24, 2026

Out-of-bounds Write vulnerability in timeplus-io proton (base/poco/Foundation/src‎ modules). This... Critical Unreviewed

CVE-2026-4746 was published Mar 24, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

25,403 advisories