GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 29,008
Composer 5,618
Erlang 49
GitHub Actions 49
Go 3,521
Maven 6,415
npm 5,740
NuGet 912
pip 4,768
Pub 13
RubyGems 1,036
Rust 1,229
Swift 53

Unreviewed advisories

All unreviewed 298,053

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,063 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In Totara LMS v19.1.5 and before, the forgot password API does not implement rate limiting for... Critical Unreviewed

CVE-2026-31283 was published Apr 13, 2026

Varnish Enterprise before 6.0.16r12 allows a "workspace overflow" denial of service (daemon panic... Moderate Unreviewed

CVE-2026-40395 was published Apr 12, 2026

A memory exhaustion vulnerability exists in ZIP archive processing. Orthanc automatically... High Unreviewed

CVE-2026-5439 was published Apr 9, 2026

A memory exhaustion vulnerability exists in the HTTP server due to unbounded use of the `Content... High Unreviewed

CVE-2026-5440 was published Apr 9, 2026

A gzip decompression bomb vulnerability exists when Orthanc processes HTTP request with `Content... High Unreviewed

CVE-2026-5438 was published Apr 9, 2026

Mattermost Plugins versions <=2.3.1 fail to limit the request body size on the {{/lifecycle}}... Low Unreviewed

CVE-2026-21388 was published Apr 9, 2026

Mattermost Plugins versions <=2.1.3.0 fail to limit the request body size on the {{/changes}}... Low Unreviewed

CVE-2026-24661 was published Apr 9, 2026

During chain building, the amount of work that is done is not correctly limited when a large... High Unreviewed

CVE-2026-32280 was published Apr 8, 2026

Allocation of resources without limits or throttling vulnerability in Wikimedia Foundation... Moderate Unreviewed

CVE-2026-5762 was published Apr 7, 2026

In Modem, there is a possible system crash due to a logic error. This could lead to remote denial... Moderate Unreviewed

CVE-2026-20431 was published Apr 7, 2026

Allocation of resources without limits in the parsing components in Amazon Athena ODBC driver... High Unreviewed

CVE-2026-35562 was published Apr 3, 2026

An issue in Dokuwiki v.2025-05-14b 'Librarian' allows a remote attacker to cause a denial of... High Unreviewed

CVE-2026-26477 was published Apr 3, 2026

IBM Aspera Shares 1.9.9 through 1.11.0 does not properly rate limit the frequency that an... Low Unreviewed

CVE-2025-66487 was published Apr 2, 2026

A flaw in Node.js HTTP request handling causes an uncaught `TypeError` when a request is received... High Unreviewed

CVE-2026-21710 was published Mar 30, 2026

A flaw was found in polkit. A local user can exploit this by providing a specially crafted,... Moderate Unreviewed

CVE-2026-4897 was published Mar 26, 2026

A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions <... High Unreviewed

CVE-2026-27663 was published Mar 26, 2026

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.7 before 18.8.7, 18... Moderate Unreviewed

CVE-2025-13436 was published Mar 25, 2026

OpenClaw versions prior to 2026.3.1 contain an unbounded memory growth vulnerability in the Zalo... High Unreviewed

CVE-2026-28461 was published Mar 19, 2026

IBM i 7.6 could allow a remote attacker to cause a denial of service using failed authentication... High Unreviewed

CVE-2026-1376 was published Mar 18, 2026

wpDiscuz before 7.6.47 contains an unauthenticated denial of service vulnerability that allows... High Unreviewed

CVE-2026-22182 was published Mar 13, 2026

InputMapper 1.6.10 contains a buffer overflow vulnerability in the username field that allows... Moderate Unreviewed

CVE-2019-25464 was published Mar 11, 2026

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.3 before 18.7.6, 18... Moderate Unreviewed

CVE-2025-12576 was published Mar 11, 2026

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.11 before 18.7.6,... Moderate Unreviewed

CVE-2025-13690 was published Mar 11, 2026

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.0 before 18.7.6, 18... High Unreviewed

CVE-2025-13929 was published Mar 11, 2026

A vulnerability in the Remote Access SSL VPN functionality of Cisco Secure Firewall Adaptive... High Unreviewed

CVE-2026-20103 was published Mar 4, 2026

Previous1…43 Next

Previous 1 2 3 4 5 … 42 43 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,063 advisories