GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 31,556
Composer 5,975
Erlang 73
GitHub Actions 53
Go 4,004
Maven 6,648
npm 6,420
NuGet 974
pip 5,303
Pub 13
RubyGems 1,069
Rust 1,395
Swift 61

Unreviewed advisories

All unreviewed 307,830

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

339,386 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An authorization flaw in MISP’s object add/edit handling allowed an authenticated user with... Moderate Unreviewed

CVE-2026-54398 was published Jun 13, 2026

Allegra downloadAttachment Cross-Site Scripting Authentication Bypass Vulnerability. This... Moderate Unreviewed

CVE-2026-11443 was published Jun 13, 2026

OpenClaw before 2026.5.27 contains a state mutation vulnerability in node pairing reconnection... Moderate Unreviewed

CVE-2026-53838 was published Jun 13, 2026

Capgo before 12.128.2 fails to delete previously uploaded profile images from backend storage... Moderate Unreviewed

CVE-2026-53867 was published Jun 13, 2026

Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed... High Unreviewed

CVE-2025-9032 was published Jun 13, 2026

Allegra exportReport Directory Traversal Information Disclosure Vulnerability. This vulnerability... Moderate Unreviewed

CVE-2026-11442 was published Jun 13, 2026

OpenClaw before 2026.4.29 contains an authorization bypass vulnerability in the QQBot streaming... High Unreviewed

CVE-2026-53833 was published Jun 13, 2026

OpenClaw before 2026.5.2 contains a credential exposure vulnerability in message.action... Moderate Unreviewed

CVE-2026-53827 was published Jun 13, 2026

OpenClaw before 2026.4.22 contains a webhook secret revocation bypass vulnerability allowing... Moderate Unreviewed

CVE-2026-53830 was published Jun 13, 2026

OpenClaw before 2026.5.6 contains an authorization bypass vulnerability in native command... High Unreviewed

CVE-2026-53828 was published Jun 13, 2026

OpenClaw before 2026.4.27 contains an authorization bypass vulnerability in QQBot pre-dispatch... High Unreviewed

CVE-2026-53834 was published Jun 13, 2026

OpenClaw before 2026.5.18 contains an approval display truncation vulnerability allowing... High Unreviewed

CVE-2026-53829 was published Jun 13, 2026

OpenClaw before 2026.5.18 contains a policy enforcement vulnerability in system.run safe-bin... High Unreviewed

CVE-2026-53831 was published Jun 13, 2026

OpenClaw before 2026.5.18 contains an identity header validation vulnerability allowing local... High Unreviewed

CVE-2026-53832 was published Jun 13, 2026

OpenClaw before 2026.5.12 contains an allowlist bypass vulnerability in PowerShell encoded... High Unreviewed

CVE-2026-53836 was published Jun 13, 2026

Stack overflow vulnerability in Avast Antivirus when scanning a malformed Office Open XML file... Moderate Unreviewed

CVE-2025-7019 was published Jun 13, 2026

OpenClaw before 2026.4.7 contains an arbitrary file read vulnerability in the memory-wiki ingest... High Unreviewed

CVE-2026-53825 was published Jun 13, 2026

A weakness has been identified in CodeAstro Human Resource Management System 1.0. This... Low Unreviewed

CVE-2026-12131 was published Jun 13, 2026

Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed... High Unreviewed

CVE-2025-7017 was published Jun 13, 2026

Software installed and run as a non-privileged user may conduct intentional GPU sparse memory API... Unknown Unreviewed

CVE-2026-34195 was published Jun 13, 2026

OpenClaw before 2026.5.12 contains an exec denylist bypass vulnerability in the bundle MCP... Moderate Unreviewed

CVE-2026-53820 was published Jun 13, 2026

An attacker could cooperatively pass data from one secure GPU process to another secure GPU... Unknown Unreviewed

CVE-2026-41155 was published Jun 13, 2026

OpenClaw before 2026.5.18 accepts WebSocket client-declared operator scopes before binding to... High Unreviewed

CVE-2026-53821 was published Jun 13, 2026

Null pointer dereference vulnerability in Avira Antivirus engine when scanning a malformed... Moderate Unreviewed

CVE-2025-7018 was published Jun 13, 2026

Software installed and run as a non-privileged user may conduct GPU system calls to write to... Unknown Unreviewed

CVE-2026-41158 was published Jun 13, 2026

Previous 12…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

339,386 advisories