GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 28,459
Composer 5,543
Erlang 49
GitHub Actions 49
Go 3,413
Maven 6,358
npm 5,601
NuGet 882
pip 4,656
Pub 13
RubyGems 1,027
Rust 1,209
Swift 53

Unreviewed advisories

All unreviewed 296,562

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,464 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Improper authorization in Azure AI Foundry allows an unauthorized attacker to elevate privileges... Critical Unreviewed

CVE-2026-32213 was published Apr 3, 2026

Improper authorization in Microsoft Azure Kubernetes Service allows an unauthorized attacker to... Critical Unreviewed

CVE-2026-33105 was published Apr 3, 2026

Improper authentication in Azure SRE Agent allows an unauthorized attacker to disclose... High Unreviewed

CVE-2026-32173 was published Apr 3, 2026

XenForo before 2.3.5 allows OAuth2 client applications to request unauthorized scopes. This... High Unreviewed

CVE-2025-71278 was published Apr 1, 2026

OpenClaw before 2026.3.8 contains a sender allowlist bypass vulnerability in its Microsoft Teams... Low Unreviewed

CVE-2026-34509 was published Mar 31, 2026

When the early_acl_drop (earlyACLDrop in Lua) option is disabled (default is enabled) on a DNS... Moderate Unreviewed

CVE-2026-24029 was published Mar 31, 2026

A critical security vulnerability in parisneo/lollms versions up to 2.2.0 allows any... High Unreviewed

CVE-2026-0562 was published Mar 29, 2026

OpenClaw before 2026.3.11 contains an authorization bypass vulnerability allowing write-scoped... Moderate Unreviewed

CVE-2026-32919 was published Mar 29, 2026

OpenClaw before 2026.3.11 contains a sandbox boundary bypass vulnerability allowing leaf... Critical Unreviewed

CVE-2026-32915 was published Mar 29, 2026

OpenClaw before 2026.3.12 contains an insufficient access control vulnerability in the /config... High Unreviewed

CVE-2026-32914 was published Mar 29, 2026

OpenClaw before 2026.3.12 contains an authorization bypass vulnerability where Feishu reaction... Moderate Unreviewed

CVE-2026-32924 was published Mar 29, 2026

OpenClaw before 2026.3.11 contains an authorization bypass vulnerability allowing authenticated... High Unreviewed

CVE-2026-32972 was published Mar 29, 2026

OpenClaw before 2026.3.11 contains an authorization bypass vulnerability in Discord guild... Moderate Unreviewed

CVE-2026-32923 was published Mar 29, 2026

Incorrect Authorization vulnerability in Drupal File Access Fix (deprecated) allows Forceful... Moderate Unreviewed

CVE-2026-3526 was published Mar 26, 2026

Incorrect Authorization vulnerability in Drupal File Access Fix (deprecated) allows Forceful... Moderate Unreviewed

CVE-2026-3525 was published Mar 26, 2026

Incorrect Authorization vulnerability in Drupal Unpublished Node Permissions allows Forceful... High Unreviewed

CVE-2026-4933 was published Mar 26, 2026

Incorrect Authorization vulnerability in Drupal AI (Artificial Intelligence) allows Resource... High Unreviewed

CVE-2026-3573 was published Mar 26, 2026

Vulnerability of incorrect authorization in HiJiffy Chatbot allows an attacker to download... Moderate Unreviewed

CVE-2026-4263 was published Mar 26, 2026

Vulnerability of incorrect authorization in HiJiffy Chatbot allows an attacker to download... Moderate Unreviewed

CVE-2026-4262 was published Mar 26, 2026

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.8.7,... Moderate Unreviewed

CVE-2026-2726 was published Mar 25, 2026

Incorrect Authorization vulnerability in Drupal Material Icons allows Forceful Browsing.This... Moderate Unreviewed

CVE-2026-3210 was published Mar 25, 2026

GitLab has remediated an issue in GitLab EE affecting all versions from 18.1 before 18.8.7, 18.9... Low Unreviewed

CVE-2026-4363 was published Mar 25, 2026

This issue was addressed with improved permissions checking. This issue is fixed in iOS 18.7.7... Low Unreviewed

CVE-2026-28864 was published Mar 25, 2026

NGINX Plus and NGINX Open Source have a vulnerability in the ngx_stream_ssl_module module due to... Moderate Unreviewed

CVE-2026-28755 was published Mar 24, 2026

Vitals ESP developed by Galaxy Software Services has a Incorrect Authorization vulnerability,... High Unreviewed

CVE-2026-4639 was published Mar 24, 2026

Previous1…99 Next

Previous 1 2 3 4 5 … 98 99 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,464 advisories