GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 28,459
Composer 5,543
Erlang 49
GitHub Actions 49
Go 3,413
Maven 6,358
npm 5,601
NuGet 882
pip 4,656
Pub 13
RubyGems 1,027
Rust 1,209
Swift 53

Unreviewed advisories

All unreviewed 296,564

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,464 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

OpenClaw versions prior to 2026.3.1 contain an authorization mismatch vulnerability that allows... High Unreviewed

CVE-2026-32051 was published Mar 21, 2026

OpenClaw versions 2026.2.22 prior to 2026.2.25 contain a privilege escalation vulnerability... High Unreviewed

CVE-2026-32042 was published Mar 21, 2026

Mattermost versions 10.11.x <= 10.11.10 fail to properly validate permission requirements in the... Low Unreviewed

CVE-2026-26230 was published Mar 16, 2026

Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 10.11.x <= 10.11.10 fail to restrict... Moderate Unreviewed

CVE-2026-2462 was published Mar 16, 2026

Improper authorization in Settings prior to SMR Mar-2026 Release 1 allows local attacker to... Moderate Unreviewed

CVE-2026-20992 was published Mar 16, 2026

Excessive caching of authentication context in Neo4j Enterprise edition versions prior to 2026.01... Low Unreviewed

CVE-2026-1471 was published Mar 11, 2026

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.1 before 18.7.6, 18... Moderate Unreviewed

CVE-2025-12555 was published Mar 11, 2026

Incorrect resolving of namespaces in composite databases in Neo4j Enterprise edition prior to... Low Unreviewed

CVE-2026-1497 was published Mar 11, 2026

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and... Moderate Unreviewed

CVE-2026-21359 was published Mar 11, 2026

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and... High Unreviewed

CVE-2026-21309 was published Mar 11, 2026

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and... Moderate Unreviewed

CVE-2026-21296 was published Mar 11, 2026

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and... Moderate Unreviewed

CVE-2026-21297 was published Mar 11, 2026

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and... Moderate Unreviewed

CVE-2026-21286 was published Mar 11, 2026

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and... High Unreviewed

CVE-2026-21289 was published Mar 11, 2026

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and... Moderate Unreviewed

CVE-2026-21285 was published Mar 11, 2026

Improper authentication in Azure Arc allows an authorized attacker to elevate privileges locally. High Unreviewed

CVE-2026-26141 was published Mar 10, 2026

An authenticated Zabbix user (User role) with template/host write permissions is able to create... Moderate Unreviewed

CVE-2026-23925 was published Mar 6, 2026

Sensitive information disclosure due to improper access control. The following products are... Moderate Unreviewed

CVE-2026-28726 was published Mar 6, 2026

Information disclosure and manipulation due to improper authorization checks. The following... Moderate Unreviewed

CVE-2026-28716 was published Mar 6, 2026

Unauthorized resource manipulation due to improper authorization checks. The following products... Moderate Unreviewed

CVE-2026-28719 was published Mar 6, 2026

Unauthorized modification of settings due to insufficient authorization checks. The following... Moderate Unreviewed

CVE-2026-28720 was published Mar 6, 2026

Unauthorized report deletion due to insufficient access control. The following products are... Moderate Unreviewed

CVE-2026-28723 was published Mar 6, 2026

Unauthorized data access due to insufficient access control validation. The following products... Moderate Unreviewed

CVE-2026-28724 was published Mar 6, 2026

Sensitive information disclosure due to improper authorization checks. The following products are... Moderate Unreviewed

CVE-2026-28715 was published Mar 6, 2026

Unauthorized resource manipulation due to improper authorization checks. The following products... Moderate Unreviewed

CVE-2026-28709 was published Mar 6, 2026

Previous 12…99 Next

Previous 1 2 3 4 5 … 98 99 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,464 advisories