GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
50
Go
3,606
Maven
5,000+
npm
5,000+
NuGet
924
pip
4,831
Pub
13
RubyGems
1,045
Rust
1,256
Swift
53
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
299,311 advisories
Filter by severity
An unauthenticated attacker can exploit this vulnerability by manipulating URL to achieve...
High
Unreviewed
CVE-2025-15577
was published
Feb 12, 2026
Public dashboards with annotations enabled did not limit their annotation timerange to the locked...
Moderate
Unreviewed
CVE-2026-21722
was published
Feb 12, 2026
JUNG Smart Visu Server 1.1.1050 contains a denial of service vulnerability that allows...
High
Unreviewed
CVE-2026-26235
was published
Feb 12, 2026
JUNG Smart Visu Server 1.1.1050 contains a request header manipulation vulnerability that allows...
High
Unreviewed
CVE-2026-26234
was published
Feb 12, 2026
The installer of M-Track Duo HD version 1.0.0 contains an issue with the DLL search path, which...
High
Unreviewed
CVE-2026-25676
was published
Feb 12, 2026
The Prime Listing Manager WordPress plugin through 1.1 allows an attacker to gain administrative...
Critical
Unreviewed
CVE-2025-14892
was published
Feb 12, 2026
The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is...
Moderate
Unreviewed
CVE-2026-1537
was published
Feb 12, 2026
The AdForest theme for WordPress is vulnerable to authentication bypass in all versions up to,...
Critical
Unreviewed
CVE-2026-1729
was published
Feb 12, 2026
Dell iDRAC Service Module (iSM) for Windows, versions prior to 6.0.3.1, and Dell iDRAC Service...
High
Unreviewed
CVE-2026-23856
was published
Feb 12, 2026
Dell Update Package (DUP) Framework, versions 23.12.00 through 24.12.00, contains an Improper...
High
Unreviewed
CVE-2026-23857
was published
Feb 12, 2026
An authorization issue was addressed with improved state management. This issue is fixed in macOS...
Moderate
Unreviewed
CVE-2026-20666
was published
Feb 12, 2026
A logic issue was addressed with improved checks. This issue is fixed in watchOS 26.3, macOS...
High
Unreviewed
CVE-2026-20667
was published
Feb 12, 2026
An authorization issue was addressed with improved state management. This issue is fixed in iOS...
Moderate
Unreviewed
CVE-2026-20661
was published
Feb 12, 2026
The issue was resolved by sanitizing logging. This issue is fixed in iOS 26.3 and iPadOS 26.3,...
Low
Unreviewed
CVE-2026-20663
was published
Feb 12, 2026
A package validation issue was addressed by blocking the vulnerable package. This issue is fixed...
High
Unreviewed
CVE-2026-20658
was published
Feb 12, 2026
A path handling issue was addressed with improved logic. This issue is fixed in macOS Tahoe 26.3,...
High
Unreviewed
CVE-2026-20660
was published
Feb 12, 2026
A parsing issue in the handling of directory paths was addressed with improved path validation....
Moderate
Unreviewed
CVE-2026-20669
was published
Feb 12, 2026
ProTip!
Advisories are also available from the
GraphQL API