GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 30,628
Composer 5,817
Erlang 61
GitHub Actions 50
Go 3,821
Maven 6,571
npm 6,204
NuGet 939
pip 5,090
Pub 13
RubyGems 1,059
Rust 1,357
Swift 54

Unreviewed advisories

All unreviewed 302,665

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

158,248 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... Moderate Unreviewed

CVE-2026-21985 was published Jan 21, 2026

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed

CVE-2026-21968 was published Jan 21, 2026

Vulnerability in the Oracle Life Sciences Central Coding product of Oracle Health Sciences... Moderate Unreviewed

CVE-2026-21980 was published Jan 21, 2026

Vulnerability in the Oracle Configurator product of Oracle E-Business Suite (component: User... Moderate Unreviewed

CVE-2026-21972 was published Jan 21, 2026

Vulnerability in the Oracle Workflow product of Oracle E-Business Suite (component: Workflow... Moderate Unreviewed

CVE-2026-21959 was published Jan 21, 2026

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed

CVE-2026-21948 was published Jan 21, 2026

Vulnerability in the Oracle Life Sciences Central Designer product of Oracle Health Sciences... Moderate Unreviewed

CVE-2026-21974 was published Jan 21, 2026

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are... Moderate Unreviewed

CVE-2026-21975 was published Jan 21, 2026

Vulnerability in the Oracle Applications DBA product of Oracle E-Business Suite (component: Java... Moderate Unreviewed

CVE-2026-21960 was published Jan 21, 2026

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed

CVE-2026-21950 was published Jan 21, 2026

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component:... Moderate Unreviewed

CVE-2026-21951 was published Jan 21, 2026

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed

CVE-2026-21949 was published Jan 21, 2026

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web... Moderate Unreviewed

CVE-2026-21946 was published Jan 21, 2026

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported... Moderate Unreviewed

CVE-2026-21952 was published Jan 21, 2026

User-controlled data URLs parsed by urllib.request.DataHandler allow injecting headers through... Moderate Unreviewed

CVE-2025-15282 was published Jan 21, 2026

When using http.cookies.Morsel, user-controlled cookie values and parameters can allow injecting... Moderate Unreviewed

CVE-2026-0672 was published Jan 21, 2026

User-controlled header names and values containing newlines can allow injecting HTTP headers. Moderate Unreviewed

CVE-2026-0865 was published Jan 21, 2026

When folding a long comment in an email header containing exclusively unfoldable characters, the... Moderate Unreviewed

CVE-2025-11468 was published Jan 21, 2026

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component:... Moderate Unreviewed

CVE-2026-21938 was published Jan 21, 2026

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... Moderate Unreviewed

CVE-2026-21933 was published Jan 21, 2026

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Kernel). The... Moderate Unreviewed

CVE-2026-21928 was published Jan 21, 2026

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... Moderate Unreviewed

CVE-2026-21925 was published Jan 21, 2026

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported... Moderate Unreviewed

CVE-2026-21929 was published Jan 21, 2026

The imaplib module, when passed a user-controlled command, can have additional commands injected... Moderate Unreviewed

CVE-2025-15366 was published Jan 21, 2026

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Driver). The... Moderate Unreviewed

CVE-2026-21935 was published Jan 21, 2026

Previous 1…393…400 Next

Previous 1 2 … 391 392 393 394 395 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

158,248 advisories