GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 28,980
Composer 5,607
Erlang 49
GitHub Actions 49
Go 3,521
Maven 6,414
npm 5,732
NuGet 911
pip 4,760
Pub 13
RubyGems 1,036
Rust 1,229
Swift 53

Unreviewed advisories

All unreviewed 298,052

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

142,609 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A flaw was found in FFmpeg. A remote attacker could exploit this vulnerability by providing a... Moderate Unreviewed

CVE-2026-6385 was published Apr 15, 2026

A flaw was found in KubeVirt's Role-Based Access Control (RBAC) evaluation logic. The... Moderate Unreviewed

CVE-2026-6383 was published Apr 15, 2026

A flaw was found in GIMP. Processing a specially crafted PVR image file with large dimensions can... Moderate Unreviewed

CVE-2026-40918 was published Apr 15, 2026

A flaw was found in GIMP. This vulnerability, a buffer overflow in the `file-seattle-filmworks`... Moderate Unreviewed

CVE-2026-40919 was published Apr 15, 2026

A flaw was found in the System Security Services Daemon (SSSD). The pam_passkey_child_read_data()... Moderate Unreviewed

CVE-2026-6245 was published Apr 15, 2026

Heap buffer overflow in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker... Moderate Unreviewed

CVE-2026-6298 was published Apr 15, 2026

A flaw was found in GIMP. This vulnerability, a heap buffer over-read in the `icns_slurp()`... Moderate Unreviewed

CVE-2026-40917 was published Apr 15, 2026

A flaw was found in GIMP. A stack buffer overflow vulnerability in the TIM image loader's 4BPP... Moderate Unreviewed

CVE-2026-40916 was published Apr 15, 2026

A flaw was found in GIMP. A remote attacker could exploit an integer overflow vulnerability in... Moderate Unreviewed

CVE-2026-40915 was published Apr 15, 2026

The CVE-2021-36156 fix validates the namespace parameter for path traversal sequences after a... Moderate Unreviewed

CVE-2026-21726 was published Apr 15, 2026

JavaScript is vulnerable to prototype pollution in Mafintosh's protocol-buffers-schema Version 3... Moderate Unreviewed

CVE-2026-5758 was published Apr 15, 2026

A vulnerability in the CLI of Cisco ThousandEyes Enterprise Agent could allow an authenticated,... Moderate Unreviewed

CVE-2026-20161 was published Apr 15, 2026

A vulnerability in the Desktop Agent functionality of Cisco Webex Contact Center could have... Moderate Unreviewed

CVE-2026-20170 was published Apr 15, 2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2026-6370 was published Apr 15, 2026

In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform... Moderate Unreviewed

CVE-2026-20203 was published Apr 15, 2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-15636 was published Apr 15, 2026

A vulnerability in the web-based management interface of Cisco Unity Connection could allow an... Moderate Unreviewed

CVE-2026-20059 was published Apr 15, 2026

Cross-Site Request Forgery (CSRF) vulnerability in Zaytech Smart Online Order for Clover allows... Moderate Unreviewed

CVE-2025-15635 was published Apr 15, 2026

A vulnerability in the web-based management interface of Cisco Unity Connection could allow an... Moderate Unreviewed

CVE-2026-20060 was published Apr 15, 2026

A vulnerability in the CLI of Cisco Identity Services Engine (ISE) and Cisco ISE Passive... Moderate Unreviewed

CVE-2026-20136 was published Apr 15, 2026

Multiple vulnerabilities in Cisco Unity Connection could allow an authenticated, remote attacker... Moderate Unreviewed

CVE-2026-20078 was published Apr 15, 2026

A vulnerability in the web-based management interface of Cisco Unity Connection could allow an... Moderate Unreviewed

CVE-2026-20061 was published Apr 15, 2026

Multiple vulnerabilities in Cisco Unity Connection could allow an authenticated, remote attacker... Moderate Unreviewed

CVE-2026-20081 was published Apr 15, 2026

A vulnerability in the authentication service feature of Cisco AsyncOS Software for Cisco Secure... Moderate Unreviewed

CVE-2026-20152 was published Apr 15, 2026

A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to... Moderate Unreviewed

CVE-2026-20148 was published Apr 15, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

142,609 advisories