GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 28,101
Composer 5,484
Erlang 47
GitHub Actions 48
Go 3,378
Maven 6,352
npm 5,450
NuGet 881
pip 4,573
Pub 13
RubyGems 1,013
Rust 1,205
Swift 51

Unreviewed advisories

All unreviewed 295,825

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

112,066 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Addressed a potential insecure direct object reference (IDOR) vulnerability in the signing... High Unreviewed

CVE-2026-4947 was published Apr 1, 2026

IBM Storage Protect Server 8.2.0 IBM Storage Protect Plus Server is vulnerable to SQL injection.... High Unreviewed

CVE-2025-13855 was published Apr 1, 2026

Improper Restriction of XML External Entity Reference vulnerability in RTI Connext Professional ... High Unreviewed

CVE-2026-4374 was published Apr 1, 2026

XenForo before 2.3.7 discloses filesystem paths through exception messages triggered by... High Unreviewed

CVE-2025-71282 was published Apr 1, 2026

The application's update service, when checking for updates, loads certain system libraries from... High Unreviewed

CVE-2026-3775 was published Apr 1, 2026

XenForo before 2.3.5 allows OAuth2 client applications to request unauthorized scopes. This... High Unreviewed

CVE-2025-71278 was published Apr 1, 2026

The application's installer runs with elevated privileges but resolves system executables and... High Unreviewed

CVE-2026-3780 was published Apr 1, 2026

XenForo before 2.3.9 and before 2.2.18 allows remote code execution (RCE) by authenticated, but... High Unreviewed

CVE-2026-35056 was published Apr 1, 2026

XenForo before 2.3.7 does not properly restrict methods callable from within templates. A loose... High Unreviewed

CVE-2025-71281 was published Apr 1, 2026

The application's list box calculate array logic keeps stale references to page or form objects... High Unreviewed

CVE-2026-3779 was published Apr 1, 2026

A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW,... High Unreviewed

CVE-2026-5214 was published Apr 1, 2026

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS... High Unreviewed

CVE-2026-5212 was published Mar 31, 2026

A vulnerability was determined in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS... High Unreviewed

CVE-2026-5213 was published Mar 31, 2026

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS... High Unreviewed

CVE-2026-5211 was published Mar 31, 2026

NVIDIA BioNeMo contains a vulnerability where a user could cause a deserialization of untrusted... High Unreviewed

CVE-2026-24164 was published Mar 31, 2026

NVIDIA BioNeMo contains a vulnerability where a user could cause a deserialization of untrusted... High Unreviewed

CVE-2026-24165 was published Mar 31, 2026

A security audit identified a privilege escalation vulnerability in Operations Agent(<=OA 12.29)... High Unreviewed

CVE-2026-2123 was published Mar 31, 2026

NVIDIA Jetson Linux has vulnerability in initrd, where an unprivileged attacker with physical... High Unreviewed

CVE-2026-24154 was published Mar 31, 2026

A vulnerability was determined in Tenda CH22 1.0.0.1. Affected is the function formWebTypeLibrary... High Unreviewed

CVE-2026-5204 was published Mar 31, 2026

NVIDIA Jetson for JetPack contains a vulnerability in the system initialization logic, where an... High Unreviewed

CVE-2026-24148 was published Mar 31, 2026

Stored cross-site scripting (XSS) in Checkmk version 2.5.0 (beta) before 2.5.0b2 allows... High Unreviewed

CVE-2026-20915 was published Mar 31, 2026

Stored cross-site scripting (XSS) in Checkmk 2.5.0 (beta) before 2.5.0b2 allows authenticated... High Unreviewed

CVE-2026-33276 was published Mar 31, 2026

InfCode's terminal auto-execution module contains a critical command filtering vulnerability that... High Unreviewed

CVE-2026-30309 was published Mar 31, 2026

OpenClaw before 2026.3.28 contains a privilege escalation vulnerability in the /pair approve... High Unreviewed

CVE-2026-33579 was published Mar 31, 2026

A directory traversal vulnerability in the agentic-context-engine project versions up to 0.7.1... High Unreviewed

CVE-2026-29870 was published Mar 31, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

112,066 advisories