GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,250
Composer 5,336
Erlang 44
GitHub Actions 43
Go 3,181
Maven 6,302
npm 5,159
NuGet 863
pip 4,474
Pub 12
RubyGems 991
Rust 1,185
Swift 51

Unreviewed advisories

All unreviewed 293,693

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

392 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability allowing an authenticated domain user to perform remote code execution (RCE) on... Critical Unreviewed

CVE-2026-21667 was published Mar 12, 2026

A vulnerability allowing an authenticated domain user to perform remote code execution (RCE) on... Critical Unreviewed

CVE-2026-21666 was published Mar 12, 2026

Insecure Access Control in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0... Critical Unreviewed

CVE-2025-66956 was published Mar 11, 2026

Sandbox escape in the Storage: IndexedDB component. This vulnerability affects Firefox < 148 and... Critical Unreviewed

CVE-2026-2768 was published Feb 24, 2026

The vulnerability was rooted in how the Tassos Framework plugin handled specific AJAX requests... Critical Unreviewed

CVE-2026-21627 was published Feb 20, 2026

Cross Site Request Forgery vulnerability in Dolibarr ERP & CRM v.22.0.9 allows a remote attacker... Critical Unreviewed

CVE-2025-69634 was published Feb 12, 2026

Missing Authentication for Critical Function, Improper Access Control vulnerability in Dinosoft... Critical Unreviewed

CVE-2025-8025 was published Feb 11, 2026

Azure Front Door Elevation of Privilege Vulnerability Critical Unreviewed

CVE-2026-24300 was published Feb 6, 2026

Axigen Mail Server before 10.5.57 contains an improper access control vulnerability in the... Critical Unreviewed

CVE-2025-68721 was published Feb 5, 2026

Incorrect access control in the importUser function of SpringBlade v4.5.0 allows attackers with... Critical Unreviewed

CVE-2025-70982 was published Jan 26, 2026

Incorrect access control in the authRoutes function of SpringBlade v4.5.0 allows attackers with... Critical Unreviewed

CVE-2025-70983 was published Jan 23, 2026

Incorrect access control in the update function of RuoYi v4.8.2 allows unauthorized attackers to... Critical Unreviewed

CVE-2025-70985 was published Jan 23, 2026

Improper access control in Azure Resource Manager allows an authorized attacker to elevate... Critical Unreviewed

CVE-2026-24304 was published Jan 23, 2026

Improper access control in Azure Front Door (AFD) allows an unauthorized attacker to elevate... Critical Unreviewed

CVE-2026-24306 was published Jan 23, 2026

Vulnerability in the Oracle HTTP Server, Oracle Weblogic Server Proxy Plug-in product of Oracle... Critical Unreviewed

CVE-2026-21962 was published Jan 21, 2026

A stored cross-site scripting (XSS) vulnerability exists in the Altium Forum due to missing... Critical Unreviewed

CVE-2026-1181 was published Jan 19, 2026

Sandbox escape in the Messaging System component. This vulnerability affects Firefox < 147. Critical Unreviewed

CVE-2026-0881 was published Jan 13, 2026

TOTOLINK A3300R V17.0.0cu.557_B20221024 and N200RE V9.3.5u.6448_B20240521 and V9.3.5u... Critical Unreviewed

CVE-2025-55895 was published Dec 15, 2025

Plesk 18.0 has Incorrect Access Control. Critical Unreviewed

CVE-2025-66430 was published Dec 12, 2025

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a... Critical Unreviewed

CVE-2025-59703 was published Dec 2, 2025

An issue was discovered in Blood Bank Management System 1.0 allowing authenticated attackers to... Critical Unreviewed

CVE-2025-63525 was published Dec 1, 2025

An unauthenticated administrative access vulnerability exists in the open-source HashTech project... Critical Unreviewed

CVE-2025-65276 was published Nov 26, 2025

Incorrect access control in youlai-boot v2.21.1 allows attackers to escalate privileges and... Critical Unreviewed

CVE-2025-55469 was published Nov 26, 2025

The Axel Technology StreamerMAX MK II devices (firmware versions 0.8.5 to 1.0.3) are vulnerable... Critical Unreviewed

CVE-2025-63223 was published Nov 19, 2025

The Axel Technology puma devices (firmware versions 0.8.5 to 1.0.3) are vulnerable to Broken... Critical Unreviewed

CVE-2025-63221 was published Nov 19, 2025

Previous1…16 Next

Previous 1 2 3 4 5 … 15 16 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

392 advisories