Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
73
GitHub Actions
53
Go
4,004
Maven
5,000+
npm
5,000+
NuGet
974
pip
5,000+
Pub
13
RubyGems
1,069
Rust
1,395
Swift
61
Unreviewed advisories
All unreviewed
5,000+

472 advisories

Loading
Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.115 allowed a... Low Unreviewed
CVE-2026-12017 was published Jun 12, 2026
Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by an... Low Unreviewed
CVE-2026-48288 was published Jun 9, 2026
Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by an... Low Unreviewed
CVE-2026-48289 was published Jun 9, 2026
Improper input validation in Microsoft Azure Attestation service and Device Health Attestation... Low Unreviewed
CVE-2026-45642 was published Jun 9, 2026
Authenticated administrators connected to the local network can gain elevated access to the... Low Unreviewed
CVE-2026-0410 was published Jun 9, 2026
Insufficient validation of untrusted input in New Tab Page in Google Chrome prior to 149.0.7827... Low Unreviewed
CVE-2026-11691 was published Jun 9, 2026
Insufficient validation of untrusted input in Dawn in Google Chrome on macOS prior to 149.0.7827... Low Unreviewed
CVE-2026-11686 was published Jun 9, 2026
Out of bounds read in Skia in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who... Low Unreviewed
CVE-2026-11675 was published Jun 9, 2026
A flaw has been found in Boost Serialization up to 1.91. The impacted element is an unknown... Low Unreviewed
CVE-2026-11460 was published Jun 7, 2026
Omni: Operator can traverse image-factory API paths via unsanitized `talos_version` in CreateSchematic Low
CVE-2026-45723 was published for github.com/siderolabs/omni (Go) Jun 5, 2026
bugbunny-research Credited to bugbunny-research
Insufficient policy enforcement in Password Manager in Google Chrome prior to 149.0.7827.53... Low Unreviewed
CVE-2026-11251 was published Jun 5, 2026
Insufficient validation of untrusted input in Loader in Google Chrome prior to 149.0.7827.53... Low Unreviewed
CVE-2026-11240 was published Jun 5, 2026
Insufficient validation of untrusted input in WebAuthentication in Google Chrome prior to 149.0... Low Unreviewed
CVE-2026-11244 was published Jun 5, 2026
A weakness has been identified in FoundationAgents MetaGPT up to 0.8.2. This affects the function... Low Unreviewed
CVE-2026-10566 was published Jun 2, 2026
Insufficient validation of untrusted input in iOS in Google Chrome on iOS prior to 148.0.7778.216... Low Unreviewed
CVE-2026-9950 was published May 29, 2026
Capsule Namespace Hijacking via subresource Low
CVE-2026-30963 was published for github.com/projectcapsule/capsule (Go) May 28, 2026
xy585 Credited to xy585
A security vulnerability has been detected in fraillt bitsery up to 5.2.4. Affected is the... Low Unreviewed
CVE-2026-9521 was published May 26, 2026
A flaw has been found in changmingxie tcc-transaction up to 2.1.0. This issue affects the... Low Unreviewed
CVE-2026-9497 was published May 26, 2026
in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS. Low Unreviewed
CVE-2026-28751 was published May 19, 2026
A vulnerability was identified in Oinone Pamirs up to 7.2.0. This affects the function JsonUtils... Low Unreviewed
CVE-2026-8735 was published May 17, 2026
Insufficient validation of untrusted input in Skia in Google Chrome prior to 148.0.7778.168... Low Unreviewed
CVE-2026-8579 was published May 14, 2026
Insufficient validation of untrusted input in ReadingMode in Google Chrome on Mac prior to 148.0... Low Unreviewed
CVE-2026-8536 was published May 14, 2026
A vulnerability in Palo Alto Networks Broker VM allows an authenticated administrator to inject... Low Unreviewed
CVE-2026-0238 was published May 13, 2026
Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and... Low Unreviewed
CVE-2026-34685 was published May 12, 2026
Vulnerability in Wikimedia Foundation AbuseFilter. This issue affects AbuseFilter: from * before... Low Unreviewed
CVE-2026-34086 was published May 11, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database