GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 32,549
Composer 6,122
Erlang 86
GitHub Actions 54
Go 4,175
Maven 6,713
npm 6,687
NuGet 1,019
pip 5,531
Pub 13
RubyGems 1,102
Rust 1,421
Swift 61

Unreviewed advisories

All unreviewed 310,878

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,214 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Mythic before 3.4.0.60 contains an authorization bypass vulnerability that allows authenticated... Moderate Unreviewed

CVE-2026-57953 was published Jun 29, 2026

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.6 before 18.11.6,... Moderate Unreviewed

CVE-2026-5796 was published Jun 25, 2026

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.11 before 18.11.6,... Moderate Unreviewed

CVE-2026-5952 was published Jun 25, 2026

GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 prior to 18.11.6,... Moderate Unreviewed

CVE-2026-11379 was published Jun 25, 2026

NanoClaw before 2.1.0 contains a privilege escalation vulnerability in the channel-registration... Moderate Unreviewed

CVE-2026-56694 was published Jun 23, 2026

Lack of authentication when using the "snapshot diff" functions in qSnapper before version 1.3.3... Moderate Unreviewed

CVE-2026-41047 was published Jun 22, 2026

Incorrect Authorization vulnerability in Apache APISIX. An attacker can capitalise on authz... Moderate Unreviewed

CVE-2026-47339 was published Jun 19, 2026

Sonatype Nexus Repository Manager before 3.93.0 contains an authorization vulnerability in the... Moderate Unreviewed

CVE-2026-10741 was published Jun 17, 2026

Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.155 allowed a... Moderate Unreviewed

CVE-2026-12446 was published Jun 17, 2026

The RTMKit plugin for WordPress is vulnerable to Incorrect Authorization in all versions up to,... Moderate Unreviewed

CVE-2026-5149 was published Jun 16, 2026

The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2026-2470 was published Jun 13, 2026

An authorization flaw in MISP’s object add/edit handling allowed an authenticated user with... Moderate Unreviewed

CVE-2026-54398 was published Jun 13, 2026

An incorrect visibility condition in the MISP event template builder allowed authenticated non... Moderate Unreviewed

CVE-2026-54362 was published Jun 12, 2026

A vulnerability in MISP’s non-REST event editing path allowed an authenticated user with event... Moderate Unreviewed

CVE-2026-54397 was published Jun 12, 2026

Mattermost versions 11.6.x <= 11.6.1, 11.5.x <= 11.5.4, 10.11.x <= 10.11.15, 10.11.x <= 10.11.16... Moderate Unreviewed

CVE-2026-6739 was published Jun 12, 2026

OpenClaw before 2026.5.6 contains an approval policy bypass vulnerability in the Skill Workshop... Moderate Unreviewed

CVE-2026-53808 was published Jun 11, 2026

GitLab has remediated an issue in GitLab EE affecting all versions from 13.9 before 18.10.8, 18... Moderate Unreviewed

CVE-2026-6277 was published Jun 11, 2026

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.10 before 18.10.8,... Moderate Unreviewed

CVE-2026-6269 was published Jun 11, 2026

Dreamweaver Desktop versions 21.7 and earlier are affected by an Incorrect Authorization... Moderate Unreviewed

CVE-2026-47910 was published Jun 9, 2026

Incorrect authorization in the User Messages dashboard widget in Checkmk <2.5.0p5 causes the... Moderate Unreviewed

CVE-2026-7765 was published Jun 8, 2026

Improper authorization in AppBlock prior to SMR Jun-2026 Release 1 allows local attacker to... Moderate Unreviewed

CVE-2026-21031 was published Jun 5, 2026

The Slider Revolution plugin for WordPress is vulnerable to Sensitive Information Exposure in... Moderate Unreviewed

CVE-2026-9048 was published Jun 2, 2026

In JetBrains TeamCity before 2026.1 insufficient username validation in the SAML plugin Moderate Unreviewed

CVE-2026-49376 was published May 29, 2026

In JetBrains YouTrack before 2026.1.13162 information disclosure was possible on Users and Groups... Moderate Unreviewed

CVE-2026-49369 was published May 29, 2026

OpenClaw before 2026.4.29 contains an SSRF policy bypass vulnerability in browser debug and... Moderate Unreviewed

CVE-2026-35673 was published May 29, 2026

Previous1…49 Next

Previous 1 2 3 4 5 … 48 49 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

1,214 advisories