Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
45
Go
3,196
Maven
5,000+
npm
5,000+
NuGet
864
pip
4,483
Pub
12
RubyGems
992
Rust
1,186
Swift
51
Unreviewed advisories
All unreviewed
5,000+

3,942 advisories

Loading
Improper access control in Windows Routing and Remote Access Service (RRAS) allows an authorized... High Unreviewed
CVE-2026-20843 was published Jan 13, 2026
Improper access control in Windows Deployment Services allows an unauthorized attacker to execute... High Unreviewed
CVE-2026-0386 was published Jan 13, 2026
Improper access control in Windows Hyper-V allows an authorized attacker to disclose information... Moderate Unreviewed
CVE-2026-20825 was published Jan 13, 2026
Sandbox escape in the Messaging System component. This vulnerability affects Firefox < 147. Critical Unreviewed
CVE-2026-0881 was published Jan 13, 2026
n8n: Webhook Node IP Whitelist Bypass via Partial String Matching Moderate
CVE-2025-68949 was published for n8n (npm) Jan 13, 2026
berkdedekarginoglu Credited to berkdedekarginoglu
A security flaw has been discovered in Sangfor Operation and Maintenance Management System up to... Moderate Unreviewed
CVE-2025-15503 was published Jan 10, 2026
A memory initialization issue was addressed with improved memory handling. This issue is fixed in... Moderate Unreviewed
CVE-2025-46299 was published Jan 10, 2026
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-46297 was published Jan 10, 2026
A vulnerability was found in BiggiDroid Simple PHP CMS 1.0. This impacts an unknown function of... Moderate Unreviewed
CVE-2025-15495 was published Jan 9, 2026
KAYSUS KS-WR3600 routers with firmware 1.0.5.9.1 enable the SSH service enabled by default on the... High Unreviewed
CVE-2025-68716 was published Jan 8, 2026
A flaw has been found in projectworlds House Rental and Property Listing 1.0. Impacted is an... Moderate Unreviewed
CVE-2026-0643 was published Jan 7, 2026
Nokia SR Linux is vulnerable to an authentication vulnerability allowing unauthorized access to... Moderate Unreviewed
CVE-2025-0980 was published Jan 7, 2026
Bypassing Kyverno Policies via Double Policy Exceptions Critical
GHSA-gg4x-fgg2-h9w9 was published for github.com/kyverno/kyverno (Go) Jan 6, 2026
r0binak Credited to r0binak
An Improper Access Control could allow a malicious actor in Wi-Fi range to the EV Station Lite ... Moderate Unreviewed
CVE-2026-21635 was published Jan 5, 2026
A vulnerability in the directory permissions of Cisco Desk Phone 9800 Series, Cisco IP Phone 7800... Moderate Unreviewed
CVE-2025-20335 was published Jan 5, 2026
A vulnerability was found in cld378632668 JavaMall up to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0... Moderate Unreviewed
CVE-2025-15448 was published Jan 5, 2026
A flaw has been found in code-projects Online Product Reservation System 1.0. Affected by this... Moderate Unreviewed
CVE-2026-0577 was published Jan 4, 2026
Bagisto has IDOR in Customer Order Reorder Functionality High
CVE-2026-21447 was published for bagisto/bagisto (Composer) Jan 2, 2026
DenizParlak Credited to DenizParlak
A security vulnerability has been detected in code-projects Content Management System 1.0.... Moderate Unreviewed
CVE-2026-0566 was published Jan 2, 2026
A vulnerability was found in PHPGurukul Online Course Registration up to 3.1. This issue affects... Moderate Unreviewed
CVE-2026-0547 was published Jan 2, 2026
A vulnerability was identified in jackying H-ui.admin up to 3.1. This affects an unknown function... Moderate Unreviewed
CVE-2025-15426 was published Jan 2, 2026
A vulnerability has been found in EmpireSoft EmpireCMS up to 8.0. Impacted is the function... Moderate Unreviewed
CVE-2025-15423 was published Jan 2, 2026
A vulnerability has been found in xnx3 wangmarket up to 6.4. The impacted element is the function... Moderate Unreviewed
CVE-2025-15415 was published Jan 2, 2026
A security vulnerability has been detected in campcodes School File Management System 1.0. The... Moderate Unreviewed
CVE-2025-15404 was published Jan 1, 2026
A vulnerability was determined in newbee-mall-plus 2.0.0. This impacts the function Upload of the... Moderate Unreviewed
CVE-2025-15360 was published Dec 31, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database