Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
73
GitHub Actions
53
Go
4,004
Maven
5,000+
npm
5,000+
NuGet
974
pip
5,000+
Pub
13
RubyGems
1,069
Rust
1,395
Swift
61
Unreviewed advisories
All unreviewed
5,000+

17 advisories

Loading
Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4... High Unreviewed
CVE-2026-53408 was published Jun 12, 2026
Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4... High Unreviewed
CVE-2026-53407 was published Jun 12, 2026
A flaw exists in FlashArray Purity where insufficient filtering of certain data paths could... High Unreviewed
CVE-2026-6445 was published Jun 9, 2026
Mattermost Desktop App versions <=6.1 6.0.1 5.4.13.0 fail to prevent an invalid URL from loading... Moderate Unreviewed
CVE-2026-3471 was published May 18, 2026
@mobilenext/mobile-mcp: Arbitrary Android Intent Execution via mobile_open_url High
CVE-2026-35394 was published for @mobilenext/mobile-mcp (npm) Apr 4, 2026
manthanghasadiya Credited to manthanghasadiya
Cwe is not in rca categories in Microsoft Authenticator allows an unauthorized attacker to... Moderate Unreviewed
CVE-2026-26123 was published Mar 10, 2026
Mattermost Desktop App versions <=6.0 6.2.0 5.2.13.0 fail to validate help links which allows a... High Unreviewed
CVE-2026-1046 was published Feb 16, 2026
In JetBrains TeamCity before 2025.11.2 improper repository URL validation could lead to local... Low Unreviewed
CVE-2025-67739 was published Dec 11, 2025
Improper authorization in handler for custom URL scheme issue in "Yahoo! Shopping" App for... Moderate Unreviewed
CVE-2025-41408 was published Sep 5, 2025
Opening maliciously-crafted URLs in Firefox from other apps such as Safari could have allowed... Moderate Unreviewed
CVE-2025-5020 was published May 21, 2025
Improper authorization in handler for custom URL scheme issue in "Shonen Jump+" App for Android... Low Unreviewed
CVE-2024-54125 was published Dec 17, 2024
Improper authorization in handler for custom URL scheme issue in 'Skylark' App for Android 6.2.13... Low Unreviewed
CVE-2024-54014 was published Dec 5, 2024
Improper authorization in handler for custom URL scheme issue in "@cosme" App for Android... Moderate Unreviewed
CVE-2024-45203 was published Sep 9, 2024
'Rakuten Ichiba App' for Android 12.4.0 and earlier and 'Rakuten Ichiba App' for iOS 11.7.0 and... Low Unreviewed
CVE-2024-41918 was published Aug 29, 2024
Improper authorization in handler for custom URL scheme issue in 'ZOZOTOWN' App for Android... Moderate Unreviewed
CVE-2024-35298 was published Jun 19, 2024
An attacker could retrieve sensitive files (medical images) as well as plant new medical images... High Unreviewed
CVE-2024-33606 was published Jun 11, 2024
Improper authorization in some Zoom clients may allow an authorized user to conduct an escalation... Moderate Unreviewed
CVE-2023-43582 was published Nov 15, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database