GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 28,209
Composer 5,516
Erlang 48
GitHub Actions 48
Go 3,391
Maven 6,352
npm 5,470
NuGet 882
pip 4,614
Pub 13
RubyGems 1,013
Rust 1,205
Swift 51

Unreviewed advisories

All unreviewed 295,957

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

112,116 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The MW WP Form plugin for WordPress is vulnerable to arbitrary file moving due to insufficient... High Unreviewed

CVE-2026-4347 was published Apr 2, 2026

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF... High Unreviewed

CVE-2026-32927 was published Apr 2, 2026

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CV7BaseMap:... High Unreviewed

CVE-2026-32925 was published Apr 2, 2026

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile... High Unreviewed

CVE-2026-32926 was published Apr 2, 2026

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM.... High Unreviewed

CVE-2026-32929 was published Apr 2, 2026

HCL BigFix Platform is affected by insecure permissions on private cryptographic keys. The... High Unreviewed

CVE-2026-21765 was published Apr 2, 2026

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData:... High Unreviewed

CVE-2026-32928 was published Apr 2, 2026

A path traversal vulnerability in the Fireware OS Web UI on WatchGuard Firebox systems may allow... High Unreviewed

CVE-2026-3987 was published Apr 2, 2026

Improper authentication in the OAuth login functionality in Devolutions Server 2026.1.11 and... High Unreviewed

CVE-2026-4828 was published Apr 1, 2026

CrewAI contains a arbitrary local file read vulnerability in the JSON loader tool that reads... High Unreviewed

CVE-2026-2285 was published Mar 30, 2026

An arbitrary file overwrite vulnerability in Docudepot PDF Reader: PDF Viewer APP v1.0.34 allows... High Unreviewed

CVE-2026-30292 was published Apr 1, 2026

Improper authentication in the two-factor authentication (2FA) feature in Devolutions Server... High Unreviewed

CVE-2026-4924 was published Apr 1, 2026

An arbitrary file overwrite vulnerability in Deep Thought Industries ACE Scanner PDF Scanner v1.4... High Unreviewed

CVE-2026-30287 was published Apr 1, 2026

An arbitrary file overwrite vulnerability in UXGROUP LLC Voice Recorder v10.0 allows attackers to... High Unreviewed

CVE-2026-30284 was published Mar 31, 2026

A vulnerability in the certificate validation logic may allow applications to accept untrusted or... High Unreviewed

CVE-2025-9293 was published Feb 13, 2026

IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify Access Container... High Unreviewed

CVE-2026-4101 was published Apr 1, 2026

IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify Access Container... High Unreviewed

CVE-2026-1345 was published Apr 1, 2026

Mbed TLS 3.5.0 to 3.6.5 fixed in 3.6.6 and 4.1.0 has a buffer overflow in the x509_inet_pton_ipv6... High Unreviewed

CVE-2026-25833 was published Apr 1, 2026

ChangeDetection.io versions prior to 0.54.7 contain a protection bypass vulnerability in the... High Unreviewed

CVE-2026-35000 was published Apr 1, 2026

An issue was discovered in Mbed TLS through 3.6.5 and 4.x through 4.0.0. There is a NULL pointer... High Unreviewed

CVE-2026-34874 was published Apr 1, 2026

Mbed TLS before 3.6.6 and TF-PSA-Crypto before 1.1.0 misuse seeds in a Pseudo-Random Number... High Unreviewed

CVE-2026-25835 was published Apr 1, 2026

pandas-ai v3.0.0 was discovered to contain a SQL injection vulnerability via the pandasai.agent... High Unreviewed

CVE-2026-30273 was published Apr 1, 2026

An arbitrary file overwrite vulnerability in Ora Tools PDF Reader ' Reader & Editor APPv4.3.5... High Unreviewed

CVE-2026-30291 was published Apr 1, 2026

Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had... High Unreviewed

CVE-2026-5281 was published Apr 1, 2026

ByteDance Deer-Flow versions prior to commit 92c7a20 contain a sandbox escape vulnerability in... High Unreviewed

CVE-2026-34430 was published Apr 1, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

112,116 advisories