GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 30,135
Composer 5,773
Erlang 55
GitHub Actions 50
Go 3,732
Maven 6,532
npm 6,042
NuGet 935
pip 4,952
Pub 13
RubyGems 1,055
Rust 1,343
Swift 54

Unreviewed advisories

All unreviewed 301,066

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

301,066 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A security flaw has been discovered in gyoridavid short-video-maker up to 1.3.4. This affects an... Moderate Unreviewed

CVE-2026-8115 was published May 8, 2026

A security vulnerability has been detected in SourceCodester Pizzafy Ecommerce System 1.0. This... Low Unreviewed

CVE-2026-8117 was published May 8, 2026

A weakness has been identified in huangjunsen0406 xiaozhi-mcphub up to 1.0.3. This vulnerability... Low Unreviewed

CVE-2026-8116 was published May 8, 2026

This vulnerability, in the MAXHUB Pivot client application versions prior to v1.36.2, may allow... High Unreviewed

CVE-2026-6411 was published May 8, 2026

Server-side request forgery (ssrf) in Azure Notification Service allows an authorized attacker to... High Unreviewed

CVE-2026-41105 was published May 8, 2026

The VerySecureApp made by DIVD using Mendix Studio Pro 11.8.0 Beta allows unintended data... Critical Unreviewed

CVE-2026-7891 was published May 8, 2026

Exposure of sensitive information to an unauthorized actor in Azure DevOps allows an unauthorized... Critical Unreviewed

CVE-2026-42826 was published May 8, 2026

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Unknown Unreviewed

CVE-2026-2710 was published May 8, 2026

A server-side request forgery (SSRF) vulnerability was identified in the GitHub Enterprise Server... High Unreviewed

CVE-2026-8034 was published May 8, 2026

Vvveb before 1.0.8.2 contains an information disclosure vulnerability in the cron controller that... Moderate Unreviewed

CVE-2026-41928 was published May 8, 2026

A vulnerability was identified in JeecgBoot up to 3.9.1. Affected by this issue is some unknown... Low Unreviewed

CVE-2026-8114 was published May 8, 2026

A denial of service vulnerability was identified in GitHub Enterprise Server that allowed an... Moderate Unreviewed

CVE-2026-7541 was published May 8, 2026

A vulnerability was found in 8421bit MiniClaw up to 223c16a1088e138838dcbd18cd65a37c35ac5a84.... Low Unreviewed

CVE-2026-8112 was published May 8, 2026

A vulnerability was determined in 8421bit MiniClaw up to 43905b934cf76489ab28e4d17da28ee97970f91f... Low Unreviewed

CVE-2026-8113 was published May 8, 2026

An authentication bypass vulnerability was identified in GitHub Enterprise Server that allowed an... Moderate Unreviewed

CVE-2026-6736 was published May 8, 2026

In OpenStack Cyborg before 16.0.1, the Accelerator Request (ARQ) API does not enforce project... Moderate Unreviewed

CVE-2026-40214 was published May 8, 2026

A reflected HTML injection vulnerability was identified in the GitHub Enterprise Server... Moderate Unreviewed

CVE-2026-8106 was published May 8, 2026

Improper neutralization of input during web page generation ('cross-site scripting') in Azure... High Unreviewed

CVE-2026-32207 was published May 8, 2026

OpenStack Cyborg before 16.0.1 uses rule:allow (check_str='@') as the default policy for multiple... High Unreviewed

CVE-2026-40213 was published May 8, 2026

Improper access control in Azure Managed Instance for Apache Cassandra allows an authorized... Critical Unreviewed

CVE-2026-33109 was published May 8, 2026

Improper neutralization of special elements in M365 Copilot allows an unauthorized attacker to... High Unreviewed

CVE-2026-26129 was published May 8, 2026

Improper neutralization of special elements in output used by a downstream component ('injection'... High Unreviewed

CVE-2026-26164 was published May 8, 2026

Improper neutralization of special elements used in a command ('command injection') in Azure... Critical Unreviewed

CVE-2026-35428 was published May 8, 2026

Improper neutralization of special elements used in a command ('command injection') in Copilot... High Unreviewed

CVE-2026-33111 was published May 8, 2026

Improper authorization in Microsoft Teams allows an authorized attacker to disclose information... Critical Unreviewed

CVE-2026-33823 was published May 8, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

301,066 advisories