Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
61
GitHub Actions
50
Go
3,821
Maven
5,000+
npm
5,000+
NuGet
939
pip
5,000+
Pub
13
RubyGems
1,059
Rust
1,357
Swift
54
Unreviewed advisories
All unreviewed
5,000+

125,465 advisories

Loading
Out of bounds write in WebAudio in Google Chrome prior to 148.0.7778.168 allowed a remote... High Unreviewed
CVE-2026-8524 was published May 14, 2026
Insufficient validation of untrusted input in Downloads in Google Chrome prior to 148.0.7778.168... High Unreviewed
CVE-2026-8527 was published May 14, 2026
Use after free in Accessibility in Google Chrome prior to 148.0.7778.168 allowed a remote... High Unreviewed
CVE-2026-8533 was published May 14, 2026
Use after free in Network in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote... High Unreviewed
CVE-2026-8530 was published May 14, 2026
Heap buffer overflow in WebML in Google Chrome on Windows prior to 148.0.7778.168 allowed a... High Unreviewed
CVE-2026-8531 was published May 14, 2026
Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote... High Unreviewed
CVE-2026-8525 was published May 14, 2026
Integer overflow in GPU in Google Chrome on Linux and ChromeOS prior to 148.0.7778.168 allowed a... High Unreviewed
CVE-2026-8534 was published May 14, 2026
Out of bounds write in Media in Google Chrome prior to 148.0.7778.168 allowed a remote attacker... High Unreviewed
CVE-2026-8548 was published May 14, 2026
Out of bounds write in Fonts in Google Chrome prior to 148.0.7778.168 allowed a remote attacker... High Unreviewed
CVE-2026-8558 was published May 14, 2026
A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were... High Unreviewed
CVE-2026-42011 was published May 7, 2026
Use after free in Core in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote... High Unreviewed
CVE-2026-8542 was published May 14, 2026
A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR... High Unreviewed
CVE-2026-4424 was published Mar 19, 2026
A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs... High Unreviewed
CVE-2026-5201 was published Mar 31, 2026
Use after free in HID in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who... High Unreviewed
CVE-2026-8515 was published May 14, 2026
Gogs Directory Traversal High
CVE-2018-20303 was published for gogs.io/gogs (Go) May 14, 2022
cookesan Credited to cookesan
The CosyVoice project thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-30-21) contains... High Unreviewed
CVE-2026-31232 was published May 12, 2026
The mem0 1.0.0 server lacks authentication and authorization controls for its memory management... High Unreviewed
CVE-2026-31240 was published May 12, 2026
Improper Handling of Case Sensitivity vulnerability in LockOutRealm in Apache Tomcat. This issue... High Unreviewed
CVE-2026-43513 was published May 12, 2026
PyTorch-Lightning versions 2.6.0 and earlier contain an insecure deserialization vulnerability ... High Unreviewed
CVE-2026-31221 was published May 12, 2026
In the Linux kernel, the following vulnerability has been resolved: PCI: hv: Fix double ida_free... High Unreviewed
CVE-2026-43097 was published May 6, 2026
Use after free in GPU in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to... High Unreviewed
CVE-2026-8581 was published May 14, 2026
Use after free in Extensions in Google Chrome on Mac prior to 148.0.7778.168 allowed an attacker... High Unreviewed
CVE-2026-8587 was published May 14, 2026
Crabbox prior to v0.12.0 contains a privilege escalation vulnerability that allows users with... High Unreviewed
CVE-2026-8629 was published May 14, 2026
Integer overflow in Fonts in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to... High Unreviewed
CVE-2026-8577 was published May 14, 2026
Use after free in Accessibility in Google Chrome prior to 148.0.7778.168 allowed a remote... High Unreviewed
CVE-2026-8557 was published May 14, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database