Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
70
GitHub Actions
52
Go
3,967
Maven
5,000+
npm
5,000+
NuGet
973
pip
5,000+
Pub
13
RubyGems
1,064
Rust
1,387
Swift
56
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

401 advisories

Loading
The authentication mechanism for a specific feature in the EasyShare module contains a... Moderate Unreviewed
CVE-2025-15515 was published Mar 13, 2026
An improper access control vulnerability in the canonical-livepatch snap client prior to version... Moderate Unreviewed
CVE-2026-6369 was published Apr 20, 2026
Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed an... Moderate Unreviewed
CVE-2026-11238 was published Jun 5, 2026
Missing Authentication for Critical Function vulnerability in TUBITAK BILGEM Software... Moderate Unreviewed
CVE-2025-7706 was published Feb 17, 2026
Improper Privilege Management vulnerability in Menulux Information Technologies Managment Portal... Moderate Unreviewed
CVE-2024-4428 was published Aug 29, 2024
Hedera Guardian through 3.5.1 contains an authentication bypass vulnerability in the GET /api/v1... Moderate Unreviewed
CVE-2026-45248 was published May 15, 2026
Missing authentication in the KVM key download endpoint could allow an unauthenticated attacker... Moderate Unreviewed
CVE-2025-62619 was published May 14, 2026
Multiple authorization bypass vulnerabilities in the Endpoint DLP component of Prisma Access... Moderate Unreviewed
CVE-2026-0247 was published May 13, 2026
The mem0 1.0.0 server lacks authentication and authorization controls for its memory reset and... Moderate Unreviewed
CVE-2026-31243 was published May 12, 2026
The mem0 1.0.0 server lacks authentication and authorization controls for its memory deletion API... Moderate Unreviewed
CVE-2026-31244 was published May 12, 2026
A missing authentication for critical function vulnerability in Fortinet FortiOS 7.6.0 through 7... Moderate Unreviewed
CVE-2025-53847 was published Apr 14, 2026
An authentication bypass vulnerability was identified in GitHub Enterprise Server that allowed an... Moderate Unreviewed
CVE-2026-6736 was published May 8, 2026
A non-default configuration in Sage DPW 2025_06_004 allows unauthenticated access to diagnostic... Moderate Unreviewed
CVE-2025-67805 was published Apr 1, 2026
Delta Electronics DIAView has an authentication bypass vulnerability. Moderate Unreviewed
CVE-2025-58318 was published Apr 29, 2026
An improper access control vulnerability exists in the Cisco Intersight Device Connector for... Moderate Unreviewed
CVE-2026-5944 was published Apr 28, 2026
bookserver in KDE Arianna before 26.04.1 allows attackers to read files over a socket connection... Moderate Unreviewed
CVE-2026-42095 was published Apr 24, 2026
wpDiscuz before 7.6.47 contains a stored cross-site scripting vulnerability that allows... Moderate Unreviewed
CVE-2026-22192 was published Mar 13, 2026
Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware ... Moderate Unreviewed
CVE-2026-34289 was published Apr 21, 2026
Vulnerability in the PeopleSoft Enterprise HCM Absence Management product of Oracle PeopleSoft ... Moderate Unreviewed
CVE-2026-34266 was published Apr 21, 2026
Vulnerability in the PeopleSoft Enterprise HCM Human Resources product of Oracle PeopleSoft ... Moderate Unreviewed
CVE-2026-34280 was published Apr 21, 2026
Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware ... Moderate Unreviewed
CVE-2026-34288 was published Apr 21, 2026
SD-330AC and AMC Manager provided by silex technology, Inc. contain a missing authentication for... Moderate Unreviewed
CVE-2026-32962 was published Apr 20, 2026
SD-330AC and AMC Manager provided by silex technology, Inc. contain a missing authentication for... Moderate Unreviewed
CVE-2026-32957 was published Apr 20, 2026
SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker with access to a victim's... Moderate Unreviewed
CVE-2026-29132 was published Apr 2, 2026
The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired... Moderate Unreviewed
CVE-2020-24588 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database