Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
61
GitHub Actions
50
Go
3,821
Maven
5,000+
npm
5,000+
NuGet
939
pip
5,000+
Pub
13
RubyGems
1,059
Rust
1,357
Swift
54
Unreviewed advisories
All unreviewed
5,000+

14,305 advisories

Loading
Sangoma Switchvox before 8.4 places cleartext SIP authentication credentials in a backup file. Low Unreviewed
CVE-2026-45362 was published May 12, 2026
A flaw has been found in omec-project amf up to 2.1.1. This vulnerability affects unknown code of... Low Unreviewed
CVE-2026-8349 was published May 12, 2026
A vulnerability was detected in D-Link DIR-816 1.10CNB05_R1B011D88210. This affects the function... Low Unreviewed
CVE-2026-8346 was published May 12, 2026
A security vulnerability has been detected in D-Link DIR-816 1.10CNB05_R1B011D88210. Affected by... Low Unreviewed
CVE-2026-8345 was published May 12, 2026
A weakness has been identified in D-Link DIR-816 1.10CNB05_R1B011D88210. Affected by this... Low Unreviewed
CVE-2026-8344 was published May 12, 2026
An issue with app access to camera metadata was addressed with improved logic. This issue is... Low Unreviewed
CVE-2026-28957 was published May 11, 2026
This issue was addressed with improved permissions checking. This issue is fixed in macOS Tahoe... Low Unreviewed
CVE-2026-28910 was published May 11, 2026
A security vulnerability has been detected in jishenghua jshERP up to 3.6. This affects the... Low Unreviewed
CVE-2026-8320 was published May 11, 2026
Improper Neutralization of CRLF Sequences ('CRLF Injection') vulnerability in ninenines cowlib... Low Unreviewed
CVE-2026-43969 was published May 11, 2026
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation... Low Unreviewed
CVE-2026-5266 was published May 11, 2026
OpenClaw before 2026.4.20 contains a tool policy bypass vulnerability allowing bundled MCP and... Low Unreviewed
CVE-2026-44998 was published May 11, 2026
OpenClaw before 2026.4.20 contains a server-side request forgery vulnerability in browser CDP... Low Unreviewed
CVE-2026-45000 was published May 11, 2026
OpenClaw before 2026.4.21 contains an authorization bypass vulnerability in command-auth.ts that... Low Unreviewed
CVE-2026-44991 was published May 11, 2026
OpenClaw before 2026.4.22 contains a security envelope constraint bypass vulnerability allowing... Low Unreviewed
CVE-2026-44997 was published May 11, 2026
OpenClaw before 2026.4.20 contains a message classification vulnerability in Feishu card-action... Low Unreviewed
CVE-2026-44993 was published May 11, 2026
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation... Low Unreviewed
CVE-2026-34093 was published May 11, 2026
Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program... Low Unreviewed
CVE-2026-34094 was published May 11, 2026
Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program... Low Unreviewed
CVE-2026-34095 was published May 11, 2026
A weakness has been identified in Open5GS up to 2.7.7. Impacted is the function... Low Unreviewed
CVE-2026-8291 was published May 11, 2026
A security vulnerability has been detected in Open5GS up to 2.7.7. The affected element is the... Low Unreviewed
CVE-2026-8292 was published May 11, 2026
Vulnerability in Wikimedia Foundation AbuseFilter. This issue affects AbuseFilter: from * before... Low Unreviewed
CVE-2026-34086 was published May 11, 2026
Vulnerability in Wikimedia Foundation Scribunto. This issue affects Scribunto: from 1.45.0... Low Unreviewed
CVE-2026-34089 was published May 11, 2026
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation... Low Unreviewed
CVE-2026-34092 was published May 11, 2026
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation... Low Unreviewed
CVE-2026-34088 was published May 11, 2026
Next.js's Middleware / Proxy redirects can be cache-poisoned Low
CVE-2026-44572 was published for next (npm) May 11, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database