GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 32,549
Composer 6,122
Erlang 86
GitHub Actions 54
Go 4,175
Maven 6,713
npm 6,687
NuGet 1,019
pip 5,531
Pub 13
RubyGems 1,102
Rust 1,421
Swift 61

Unreviewed advisories

All unreviewed 310,878

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

631 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Gorse before 0.5.10 contains an authentication bypass vulnerability in the /api/dump and /api... Critical Unreviewed

CVE-2026-56782 was published Jun 29, 2026

WebSocket endpoints lack proper authentication mechanisms, enabling attackers to impersonate... Critical Unreviewed

CVE-2026-40702 was published Jun 26, 2026

Flowise contains an authentication bypass vulnerability in the unprotected /api/v1/account... Critical Unreviewed

CVE-2025-71327 was published Jun 26, 2026

In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430,... Critical Unreviewed

CVE-2026-50242 was published Jun 19, 2026

Two state-mutating endpoints in pgAdmin 4's SQL Editor blueprint -- DELETE /sqleditor/close/... Critical Unreviewed

CVE-2026-12046 was published Jun 19, 2026

Missing authentication for critical function in M365 Copilot allows an unauthorized attacker to... Critical Unreviewed

CVE-2026-54130 was published Jun 19, 2026

The U.S. Government Accountability Office (GAO) Electronic Protest Docketing System (EPDS) and... Critical Unreviewed

CVE-2026-54103 was published Jun 18, 2026

Hermes WebUI before 0.51.409 contains an authentication bypass vulnerability in passkey... Critical Unreviewed

CVE-2026-55196 was published Jun 17, 2026

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web... Critical Unreviewed

CVE-2026-46905 was published Jun 17, 2026

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component:... Critical Unreviewed

CVE-2026-46879 was published Jun 17, 2026

Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware (component:... Critical Unreviewed

CVE-2026-46846 was published Jun 17, 2026

Vulnerability in the Identity Manager product of Oracle Fusion Middleware (component: OIM Legacy... Critical Unreviewed

CVE-2026-46807 was published Jun 17, 2026

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware (component:... Critical Unreviewed

CVE-2026-46813 was published Jun 17, 2026

Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware (component:... Critical Unreviewed

CVE-2026-46845 was published Jun 17, 2026

Vulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware (component:... Critical Unreviewed

CVE-2026-46801 was published Jun 17, 2026

Vulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware (component:... Critical Unreviewed

CVE-2026-46800 was published Jun 17, 2026

Vulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware (component:... Critical Unreviewed

CVE-2026-46799 was published Jun 17, 2026

Vulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware (component:... Critical Unreviewed

CVE-2026-46798 was published Jun 17, 2026

Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware (component:... Critical Unreviewed

CVE-2026-46803 was published Jun 17, 2026

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware (component:... Critical Unreviewed

CVE-2026-46789 was published Jun 17, 2026

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware ... Critical Unreviewed

CVE-2026-46781 was published Jun 17, 2026

Vulnerability in the WebCenter Content: Imaging product of Oracle Fusion Middleware (component:... Critical Unreviewed

CVE-2026-46783 was published Jun 17, 2026

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware ... Critical Unreviewed

CVE-2026-46778 was published Jun 17, 2026

Vulnerability in the WebLogic Server product of Oracle Fusion Middleware (component: Console). ... Critical Unreviewed

CVE-2026-35301 was published Jun 17, 2026

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). ... Critical Unreviewed

CVE-2026-35304 was published Jun 17, 2026

Previous1…26 Next

Previous 1 2 3 4 5 … 25 26 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

631 advisories