GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 26,915
Composer 5,292
Erlang 41
GitHub Actions 42
Go 3,124
Maven 6,290
npm 5,031
NuGet 826
pip 4,434
Pub 12
RubyGems 988
Rust 1,172
Swift 50

Unreviewed advisories

All unreviewed 292,608

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

139,851 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A security vulnerability has been detected in open-webui up to 0.6.16. Affected is an unknown... Moderate Unreviewed

CVE-2025-15603 was published Mar 9, 2026

Improper access control in user and role restore API endpoints in Devolutions Server 2025.3.11.0... Moderate Unreviewed

CVE-2026-3638 was published Mar 9, 2026

An issue pertaining to CWE-532: Insertion of Sensitive Information into Log File was discovered... Moderate Unreviewed

CVE-2025-70040 was published Mar 9, 2026

An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was... Moderate Unreviewed

CVE-2025-70060 was published Mar 9, 2026

Keygraph Shannon contains a hard-coded API key in its router configuration that, when the router... Moderate Unreviewed

CVE-2026-29023 was published Mar 9, 2026

An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was... Moderate Unreviewed

CVE-2025-70033 was published Mar 9, 2026

A vulnerability has been found in SourceCodester Resort Reservation System 1.0. The affected... Moderate Unreviewed

CVE-2026-3819 was published Mar 9, 2026

Malicious scripts could display attacker-controlled web content under spoofed domains in Focus... Moderate Unreviewed

CVE-2026-2919 was published Mar 9, 2026

Software installed and run as a non-privileged user may conduct improper GPU system calls to gain... Moderate Unreviewed

CVE-2026-21736 was published Mar 9, 2026

A flaw has been found in Tiandy Easy7 CMS Windows 7.17.0. Impacted is an unknown function of the... Moderate Unreviewed

CVE-2026-3818 was published Mar 9, 2026

A vulnerability was detected in SourceCodester Patients Waiting Area Queue Management System 1.0.... Moderate Unreviewed

CVE-2026-3817 was published Mar 9, 2026

A security vulnerability has been detected in OWASP DefectDojo up to 2.55.4. This vulnerability... Moderate Unreviewed

CVE-2026-3816 was published Mar 9, 2026

A reflected Cross-Site Scripting (XSS) vulnerability has been found in Eventobot. This... Moderate Unreviewed

CVE-2025-40638 was published Mar 9, 2026

A vulnerability was identified in opencc JFlow up to 5badc00db382d7cb82dad231e6a866b18e0addfe.... Moderate Unreviewed

CVE-2026-3813 was published Mar 9, 2026

A vulnerability was determined in itsourcecode Payroll Management System 1.0. Affected is an... Moderate Unreviewed

CVE-2026-3812 was published Mar 9, 2026

An unauthenticated attacker can abuse the weak hash of the backup generated by the wwwdnload.cgi... Moderate Unreviewed

CVE-2025-41762 was published Mar 9, 2026

A low-privileged remote attacker can exploit the ubr-logread method in wwwubr.cgi to read... Moderate Unreviewed

CVE-2025-41755 was published Mar 9, 2026

An administrator may attempt to block all traffic by configuring a pass filter with an empty... Moderate Unreviewed

CVE-2025-41760 was published Mar 9, 2026

A low-privileged remote attacker can exploit the ubr-editfile method in wwwubr.cgi, an... Moderate Unreviewed

CVE-2025-41754 was published Mar 9, 2026

An administrator may attempt to block all networks by specifying "\*" or "all" as the network... Moderate Unreviewed

CVE-2025-41759 was published Mar 9, 2026

A low‑privileged remote attacker can directly interact with the wwwdnload.cgi endpoint to... Moderate Unreviewed

CVE-2025-41763 was published Mar 9, 2026

A vulnerability has been found in SourceCodester/janobe Resort Reservation System 1.0. Affected... Moderate Unreviewed

CVE-2026-3800 was published Mar 9, 2026

A weakness has been identified in SourceCodester/janobe Resort Reservation System 1.0. This issue... Moderate Unreviewed

CVE-2026-3806 was published Mar 9, 2026

A vulnerability was detected in Comfast CF-AC100 2.6.0.8. This affects the function sub_44AC14 of... Moderate Unreviewed

CVE-2026-3798 was published Mar 9, 2026

A weakness has been identified in Qi-ANXIN QAX Virus Removal up to 2025-10-22. The affected... Moderate Unreviewed

CVE-2026-3796 was published Mar 9, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

139,851 advisories