GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 29,215
Composer 5,632
Erlang 49
GitHub Actions 49
Go 3,549
Maven 6,424
npm 5,851
NuGet 917
pip 4,798
Pub 13
RubyGems 1,038
Rust 1,237
Swift 53

Unreviewed advisories

All unreviewed 298,394

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

155,699 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

OpenClaw versions 2026.4.7 before 2026.4.15 fail to enforce local-root containment on tool-result... Moderate Unreviewed

CVE-2026-41389 was published Apr 20, 2026

Cross Site Scripting vulnerability in Apartment Visitors Management System Apartment Visitors... Moderate Unreviewed

CVE-2026-39112 was published Apr 20, 2026

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2025 release version 8.3.1.0... Moderate Unreviewed

CVE-2026-26951 was published Apr 20, 2026

A vulnerability was found in ericc-ch copilot-api up to 0.7.0. The impacted element is the... Moderate Unreviewed

CVE-2026-6662 was published Apr 20, 2026

Dell PowerProtect Data Domain appliances, versions 7.7.1.0 through 8.7.0.0, LTS2025 release... Moderate Unreviewed

CVE-2026-35154 was published Apr 20, 2026

Dell PowerProtect Data Domain, versions 8.5 through 8.6 contain(s) an Improper Neutralization of... Moderate Unreviewed

CVE-2026-26942 was published Apr 20, 2026

GFI HelpDesk before 4.99.10 contains a stored cross-site scripting vulnerability in the Reports... Moderate Unreviewed

CVE-2026-23757 was published Apr 20, 2026

GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the ticket... Moderate Unreviewed

CVE-2026-23758 was published Apr 20, 2026

GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the... Moderate Unreviewed

CVE-2026-23756 was published Apr 20, 2026

GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the language... Moderate Unreviewed

CVE-2026-23753 was published Apr 20, 2026

GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the template... Moderate Unreviewed

CVE-2026-23752 was published Apr 20, 2026

A vulnerability was identified in Z-BlogPHP 1.7.5. This affects the function App::UnPack of the... Moderate Unreviewed

CVE-2026-6650 was published Apr 20, 2026

Vvveb prior to 1.0.8.1 contains a stored cross-site scripting vulnerability that allows... Moderate Unreviewed

CVE-2026-34429 was published Apr 20, 2026

pip handles concatenated tar and ZIP files as ZIP files regardless of filename or whether a file... Moderate Unreviewed

CVE-2026-3219 was published Apr 20, 2026

Dell PowerProtect Data Domain, versions 8.5 through 8.6 contain a command injection vulnerability... Moderate Unreviewed

CVE-2026-22761 was published Apr 20, 2026

A weakness has been identified in Pagekit CMS up to 1.0.18. This issue affects the function... Moderate Unreviewed

CVE-2026-6652 was published Apr 20, 2026

A vulnerability exists in the Buffalo Link Station version 1.85-0.01 that allows unauthenticated... Moderate Unreviewed

CVE-2025-66954 was published Apr 20, 2026

A security flaw has been discovered in erponline.xyz ERP Online up to 4.0.0. This vulnerability... Moderate Unreviewed

CVE-2026-6651 was published Apr 20, 2026

A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown... Moderate Unreviewed

CVE-2026-6648 was published Apr 20, 2026

An improper access control vulnerability in the canonical-livepatch snap client prior to version... Moderate Unreviewed

CVE-2026-6369 was published Apr 20, 2026

A vulnerability was determined in Qibo CMS 1.0. Affected by this issue is some unknown... Moderate Unreviewed

CVE-2026-6649 was published Apr 20, 2026

Apache Doris MCP Server versions earlier than 0.6.1 are affected by an improper neutralization... Moderate Unreviewed

CVE-2025-66335 was published Apr 20, 2026

Information exposure vulnerability has been identified in Apache Kafka. The NetworkClient... Moderate Unreviewed

CVE-2026-33558 was published Apr 20, 2026

A flaw has been found in phili67 Ecclesia CRM up to 8.0.0. This affects the function... Moderate Unreviewed

CVE-2026-6628 was published Apr 20, 2026

A security vulnerability has been detected in moxi624 Mogu Blog v2 up to 5.2. Affected by this... Moderate Unreviewed

CVE-2026-6625 was published Apr 20, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

155,699 advisories