GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,653
Composer 5,403
Erlang 44
GitHub Actions 47
Go 3,295
Maven 6,324
npm 5,267
NuGet 876
pip 4,524
Pub 12
RubyGems 1,008
Rust 1,194
Swift 51

Unreviewed advisories

All unreviewed 294,709

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

111,640 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The installer for OM Workspace (Windows Edition) Ver 2.4 and earlier insecurely loads Dynamic... High Unreviewed

CVE-2026-26306 was published Mar 25, 2026

SANUPS SOFTWARE provided by SANYO DENKI CO., LTD. registers Windows services with unquoted file... High Unreviewed

CVE-2026-33253 was published Mar 25, 2026

Cross-Site Scripting vulnerability in Hitachi Infrastructure Analytics Advisor (Analytics probe... High Unreviewed

CVE-2026-2072 was published Mar 25, 2026

NVIDIA Megatron-LM contains a vulnerability in the hybrid conversion script where an Attacker may... High Unreviewed

CVE-2025-33248 was published Mar 24, 2026

An Improper Input Validation vulnerability in UniFi Network Server may allow unauthorized access... High Unreviewed

CVE-2026-22559 was published Mar 24, 2026

NVIDIA Megatron-LM contains a vulnerability in checkpoint loading where an Attacker may cause an... High Unreviewed

CVE-2026-24150 was published Mar 24, 2026

NVIDIA Triton Inference Server Sagemaker HTTP server contains a vulnerability where an attacker... High Unreviewed

CVE-2025-33238 was published Mar 24, 2026

Injection vulnerabilities due to validation/sanitisation of user-supplied input in ActiveMatrix... High Unreviewed

CVE-2026-3912 was published Mar 24, 2026

NVIDIA Megatron LM contains a vulnerability in quantization configuration loading, which could... High Unreviewed

CVE-2025-33247 was published Mar 24, 2026

NVIDIA NeMo Framework contains a vulnerability where an attacker may cause remote code execution.... High Unreviewed

CVE-2026-24159 was published Mar 24, 2026

NVIDIA Megatron-LM contains a vulnerability in inferencing where an Attacker may cause an RCE by... High Unreviewed

CVE-2026-24151 was published Mar 24, 2026

NVIDIA Triton Inference Server contains a vulnerability in the HTTP endpoint where an attacker... High Unreviewed

CVE-2026-24158 was published Mar 24, 2026

NVIDIA Model Optimizer for Windows and Linux contains a vulnerability in the ONNX quantization... High Unreviewed

CVE-2026-24141 was published Mar 24, 2026

NVIDIA Triton Inference Server contains a vulnerability where an attacker may cause internal... High Unreviewed

CVE-2025-33254 was published Mar 24, 2026

NVIDIA Megatron-LM contains a vulnerability in checkpoint loading where an Attacker may cause an... High Unreviewed

CVE-2026-24152 was published Mar 24, 2026

NVIDIA NeMo Framework contains a vulnerability in checkpoint loading where an attacker could... High Unreviewed

CVE-2026-24157 was published Mar 24, 2026

A low privilege Zabbix user with API access can exploit a blind SQL injection vulnerability in... High Unreviewed

CVE-2026-23921 was published Mar 24, 2026

Host and event action script input is validated with a regex (set by the administrator), but the... High Unreviewed

CVE-2026-23920 was published Mar 24, 2026

For performance reasons Zabbix Server/Proxy reuses JavaScript (Duktape) contexts (used in script... High Unreviewed

CVE-2026-23919 was published Mar 24, 2026

DedeCMS v5.7.118 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability in ... High Unreviewed

CVE-2026-29839 was published Mar 24, 2026

NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_dav_module module that... High Unreviewed

CVE-2026-27654 was published Mar 24, 2026

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer... High Unreviewed

CVE-2026-4775 was published Mar 24, 2026

NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module module, which... High Unreviewed

CVE-2026-32647 was published Mar 24, 2026

The 32-bit implementation of NGINX Open Source has a vulnerability in the ngx_http_mp4_module... High Unreviewed

CVE-2026-27784 was published Mar 24, 2026

When the ngx_mail_auth_http_module module is enabled on NGINX Plus or NGINX Open Source,... High Unreviewed

CVE-2026-27651 was published Mar 24, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

111,640 advisories