GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,296
Maven
5,000+
npm
5,000+
NuGet
1,029
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,492
Swift
61
Unreviewed advisories
All unreviewed
5,000+
346,806 advisories
Filter by severity
The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an...
Critical
Unreviewed
CVE-2026-39821
was published
May 26, 2026
Issue summary: A specially crafted PKCS#7 or S/MIME signed message could
trigger a use-after-free...
Critical
Unreviewed
CVE-2026-45447
was published
Jun 9, 2026
Sandbox escape in the DOM: Workers component. This vulnerability was fixed in Firefox 152,...
Critical
Unreviewed
CVE-2026-12294
was published
Jun 16, 2026
Incorrect boundary conditions in the Web Audio component. This vulnerability was fixed in Firefox...
High
Unreviewed
CVE-2026-12292
was published
Jun 16, 2026
Sandbox escape due to incorrect boundary conditions in the Networking component. This...
Critical
Unreviewed
CVE-2026-12297
was published
Jun 16, 2026
The VerySecureApp made by DIVD using Mendix Studio Pro 11.8.0 Beta allows unintended data...
Critical
Unreviewed
CVE-2026-7891
was published
May 8, 2026
In the Linux kernel, the following vulnerability has been resolved:
wifi: mac80211: drop stray ...
High
Unreviewed
CVE-2026-46152
was published
May 28, 2026
In the Linux kernel, the following vulnerability has been resolved:
gfs2: Fix use-after-free in...
High
Unreviewed
CVE-2026-45984
was published
May 27, 2026
In the Linux kernel, the following vulnerability has been resolved:
KVM: arm64: vgic-its: Drop...
Critical
Unreviewed
CVE-2026-46316
was published
Jun 9, 2026
sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used,...
High
Unreviewed
CVE-2021-41617
was published
May 24, 2022
ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop...
Critical
Unreviewed
CVE-2023-28531
was published
Mar 17, 2023
A vulnerability has been identified in Simcenter STAR-CCM+ (All versions only if the Power-on...
High
Unreviewed
CVE-2022-34659
was published
Aug 11, 2022
The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to...
High
Unreviewed
CVE-2016-9842
was published
May 13, 2022
inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by...
Critical
Unreviewed
CVE-2016-9841
was published
May 13, 2022
A discrepancy between how Go and C/C++ comments were parsed allowed for code smuggling into the...
High
Unreviewed
CVE-2025-61732
was published
Feb 5, 2026
zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c...
Critical
Unreviewed
CVE-2022-37434
was published
Aug 6, 2022
The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is...
Moderate
Unreviewed
CVE-2026-9341
was published
Jul 14, 2026
A vulnerability has been identified in COMOS V10.4.5 (All versions < V10.4.5.0.2), COMOS V10.6 ...
High
Unreviewed
CVE-2025-40945
was published
Jul 14, 2026
Milestone
has released a new version of XProtect® (and several cumulative patch updates)
which...
Moderate
Unreviewed
CVE-2026-3014
was published
Jul 14, 2026
Privilege escalation in Checkmk versions 2.5.0 before 2.5.0p9, 2.4.0 before 2.4.0p34, 2.3.0...
Moderate
Unreviewed
CVE-2026-14852
was published
Jul 14, 2026
A vulnerability has been identified in SIMATIC S7-PLCSIM Advanced (All versions). Affected...
Moderate
Unreviewed
CVE-2026-54429
was published
Jul 14, 2026
Certain Apache Doris FE HTTP REST administrative APIs were accessible without proper...
Unknown
Unreviewed
CVE-2026-58319
was published
Jul 14, 2026
A vulnerability relating to insufficient access control has been identified in the session...
High
Unreviewed
CVE-2026-15389
was published
Jul 14, 2026
A vulnerability has been identified in Opcenter X (All versions < V2604). Affected applications...
Critical
Unreviewed
CVE-2026-56451
was published
Jul 14, 2026
A vulnerability was identified in open62541 up to 1.5.5. Affected by this issue is the function...
Low
Unreviewed
CVE-2026-15690
was published
Jul 14, 2026
ProTip!
Advisories are also available from the
GraphQL API