GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 29,402
Composer 5,653
Erlang 49
GitHub Actions 50
Go 3,599
Maven 6,431
npm 5,897
NuGet 924
pip 4,828
Pub 13
RubyGems 1,045
Rust 1,256
Swift 53

Unreviewed advisories

All unreviewed 299,288

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

11,830 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue in Hostbill v.2025-11-24 and 2025-12-01 allows a remote attacker to cause a denial of... Low Unreviewed

CVE-2026-31051 was published Apr 24, 2026

AdaptiveGRC is vulnerable to Stored XSS via text type fields across the forms. Authenticated... Low Unreviewed

CVE-2026-4313 was published Apr 24, 2026

OpenClaw before 2026.3.31 fails to terminate active WebSocket sessions when rotating device... Low Unreviewed

CVE-2026-41356 was published Apr 24, 2026

OpenClaw before 2026.4.2 fails to filter Slack thread context by sender allowlist, allowing non... Low Unreviewed

CVE-2026-41358 was published Apr 24, 2026

OpenClaw before 2026.3.31 contains an environment variable leakage vulnerability in SSH-based... Low Unreviewed

CVE-2026-41357 was published Apr 24, 2026

A request smuggling vulnerability exists in libsoup's HTTP/1 header parsing logic. The... Low Unreviewed

CVE-2026-2708 was published Apr 24, 2026

OpenClaw before 2026.3.31 contains an authorization bypass vulnerability in Discord slash command... Low Unreviewed

CVE-2026-41348 was published Apr 24, 2026

OpenClaw before 2026.3.31 contains a logic error in Discord component interaction routing that... Low Unreviewed

CVE-2026-41341 was published Apr 24, 2026

OpenClaw before 2026.3.31 lacks browser-origin validation in HTTP operator endpoints when... Low Unreviewed

CVE-2026-41347 was published Apr 24, 2026

OpenClaw before 2026.4.20 contains a scope enforcement bypass vulnerability in the assistant... Low Unreviewed

CVE-2026-41908 was published Apr 23, 2026

The reCaptcha by WebDesignBy WordPress plugin before 2.0 does not sanitize or escape the Site Key... Low Unreviewed

CVE-2026-4512 was published Apr 23, 2026

uuid before 14.0.0 can make unexpected writes when external output buffers are used, and the UUID... Low Unreviewed

CVE-2026-41988 was published Apr 23, 2026

IBM Guardium Data Protection 12.0, 12.1, and 12.2 is vulnerable to Security Misconfiguration... Low Unreviewed

CVE-2026-1272 was published Apr 23, 2026

http.cookies.Morsel.js_output() returns an inline <script> snippet and only escapes " for... Low Unreviewed

CVE-2026-6019 was published Apr 22, 2026

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.11 before 18.11.1... Low Unreviewed

CVE-2026-3254 was published Apr 22, 2026

The id utility in uutils coreutils exhibits incorrect behavior in its "pretty print" output when... Low Unreviewed

CVE-2026-35371 was published Apr 22, 2026

A logic error in the env utility of uutils coreutils causes a failure to correctly parse command... Low Unreviewed

CVE-2026-35377 was published Apr 22, 2026

A logic error in the split utility of uutils coreutils causes the corruption of output filenames... Low Unreviewed

CVE-2026-35375 was published Apr 22, 2026

A logic error in the ln utility of uutils coreutils causes the program to reject source paths... Low Unreviewed

CVE-2026-35373 was published Apr 22, 2026

A logic error in the tr utility of uutils coreutils causes the program to incorrectly define the ... Low Unreviewed

CVE-2026-35379 was published Apr 22, 2026

A logic error in the expr utility of uutils coreutils causes the program to evaluate... Low Unreviewed

CVE-2026-35378 was published Apr 22, 2026

A logic error in the cut utility of uutils coreutils causes the utility to ignore the -s (only... Low Unreviewed

CVE-2026-35381 was published Apr 22, 2026

The cut utility in uutils coreutils incorrectly handles the -s (only-delimited) option when a... Low Unreviewed

CVE-2026-35343 was published Apr 22, 2026

The dd utility in uutils coreutils suppresses errors during file truncation operations by... Low Unreviewed

CVE-2026-35344 was published Apr 22, 2026

The comm utility in uutils coreutils silently corrupts data by performing lossy UTF-8 conversion... Low Unreviewed

CVE-2026-35346 was published Apr 22, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

11,830 advisories