GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 31,556
Composer 5,975
Erlang 73
GitHub Actions 53
Go 4,004
Maven 6,648
npm 6,420
NuGet 974
pip 5,303
Pub 13
RubyGems 1,069
Rust 1,395
Swift 61

Unreviewed advisories

All unreviewed 307,830

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

26,470 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

DBI versions before 1.648 for Perl saved errors in a limited-sized buffer. Error messages that... Critical Unreviewed

CVE-2026-9698 was published Jun 9, 2026

SAP NetWeaver Application Server ABAP and ABAP Platform allows an authenticated attacker with... Critical Unreviewed

CVE-2026-44748 was published Jun 9, 2026

SAP NetWeaver Application Server Java (Web Container) allows an unauthenticated attacker to craft... Critical Unreviewed

CVE-2026-40128 was published Jun 9, 2026

Due to improper RFC protocol validation in the SAP Kernel used by the Application Server ABAP of... Critical Unreviewed

CVE-2026-27671 was published Jun 9, 2026

Insufficient validation of untrusted input in UI in Google Chrome prior to 149.0.7827.103 allowed... Critical Unreviewed

CVE-2026-11697 was published Jun 9, 2026

Use after free in Navigation in Google Chrome prior to 149.0.7827.103 allowed a remote attacker... Critical Unreviewed

CVE-2026-11671 was published Jun 9, 2026

Integer overflow in UI in Google Chrome on Linux prior to 149.0.7827.103 allowed a remote... Critical Unreviewed

CVE-2026-11659 was published Jun 9, 2026

Use after free in Printing in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to... Critical Unreviewed

CVE-2026-11638 was published Jun 9, 2026

Use after free in CameraCapture in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote... Critical Unreviewed

CVE-2026-11654 was published Jun 9, 2026

Use after free in Gamepad in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote... Critical Unreviewed

CVE-2026-11634 was published Jun 9, 2026

Use after free in Network in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to... Critical Unreviewed

CVE-2026-11651 was published Jun 9, 2026

OpenBullet2 through version 0.3.2 contains an authentication bypass vulnerability in the API key... Critical Unreviewed

CVE-2026-25555 was published Jun 8, 2026

AdGuard Home, when started with the --glinet flag, contains an authentication bypass... Critical Unreviewed

CVE-2026-41448 was published Jun 8, 2026

STACKIT IaaS API contains a missing authorization check vulnerability that allows authenticated,... Critical Unreviewed

CVE-2026-39910 was published Jun 8, 2026

Buffer Underwrite vulnerability in Apache HTTP Server on crafted regular expressions in the... Critical Unreviewed

CVE-2026-44631 was published Jun 8, 2026

A path handling issue in mod_dav_fs in Apache 2.4.67 and earlier allows a WebDAV content author... Critical Unreviewed

CVE-2026-42535 was published Jun 8, 2026

Use After Free vulnerability in Apache HTTP Server with mod_ldap in per-directory configuration ... Critical Unreviewed

CVE-2026-29167 was published Jun 8, 2026

A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated... Critical Unreviewed

CVE-2026-50751 was published Jun 8, 2026

A vulnerability was determined in Tenda HG7HG9 and HG10 300001138_en_xpon. This affects the... Critical Unreviewed

CVE-2026-11499 was published Jun 8, 2026

WordPress Seotheme contains a remote code execution vulnerability that allows unauthenticated... Critical Unreviewed

CVE-2023-54352 was published Jun 8, 2026

WordPress Theme Travelscape 1.0.3 contains an arbitrary file upload vulnerability that allows... Critical Unreviewed

CVE-2024-58349 was published Jun 8, 2026

WordPress Background Image Cropper version 1.2 contains a remote code execution vulnerability... Critical Unreviewed

CVE-2024-58348 was published Jun 8, 2026

Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft MyRezzta... Critical Unreviewed

CVE-2025-1740 was published Jun 6, 2026

A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise... Critical Unreviewed

CVE-2026-11429 was published Jun 6, 2026

A path traversal vulnerability exists in the Altium Enterprise Server Collaboration Service due... Critical Unreviewed

CVE-2026-11423 was published Jun 5, 2026

Previous 1…4…400 Next

Previous 1 2 3 4 5 6 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

26,470 advisories