GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
5 advisories
Kargo has an Authorization Bypass Vulnerability in Batch Resource Creation API Endpoints
Critical
CVE-2026-27112
was published
for
github.com/akuity/kargo
(Go)
Feb 19, 2026
Kargo has Missing Authorization Vulnerabilities in Approval & Promotion REST API Endpoints
Moderate
CVE-2026-27111
was published
for
github.com/akuity/kargo
(Go)
Feb 19, 2026
Gogs has a Protected Branch Deletion Bypass in Web Interface
High
CVE-2026-25232
was published
for
gogs.io/gogs
(Go)
Feb 17, 2026
Gogs has an Authorization Bypass Allows Cross-Repository Label Modification in Gogs
Moderate
CVE-2026-25229
was published
for
gogs.io/gogs
(Go)
Feb 17, 2026
Devtron Attributes API Unauthorized Access Leading to API Token Signing Key Leakage
High
CVE-2026-25538
was published
for
github.com/devtron-labs/devtron
(Go)
Feb 4, 2026
ProTip!
Advisories are also available from the
GraphQL API