GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 29,523
Composer 5,676
Erlang 49
GitHub Actions 50
Go 3,623
Maven 6,442
npm 5,927
NuGet 927
pip 4,843
Pub 13
RubyGems 1,045
Rust 1,271
Swift 53

Unreviewed advisories

All unreviewed 299,926

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

299,926 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

LEX Baza Dokumentów is vulnerable to DOM-based XSS in "em" cookie parameter. The application... Moderate Unreviewed

CVE-2026-1493 was published Apr 30, 2026

NULL pointer dereference vulnerability in ASR1903 in ASR Lapwing_Linux on Linux (ims_client... High Unreviewed

CVE-2026-42800 was published Apr 30, 2026

In the Linux kernel, the following vulnerability has been resolved: Buffer overflow in drivers... Unknown Unreviewed

CVE-2026-31786 was published Apr 30, 2026

In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: fix double free... Unknown Unreviewed

CVE-2026-31787 was published Apr 30, 2026

The Five Star Restaurant Reservations plugin for WordPress is vulnerable to a payment bypass via... Moderate Unreviewed

CVE-2026-6498 was published Apr 30, 2026

In JetBrains IntelliJ IDEA before 2024.3.7.1, 2025.1.7.1, 2025.2.6.2, 2025.3.4.1, 2026.1.1... High Unreviewed

CVE-2026-41882 was published Apr 30, 2026

In the Linux kernel, the following vulnerability has been resolved: cifs: some missing... Unknown Unreviewed

CVE-2026-31693 was published Apr 30, 2026

Dancer::Session::Abstract versions through 1.3522 for Perl generates session ids insecurely. The... Unknown Unreviewed

CVE-2026-5080 was published Apr 30, 2026

In the Linux kernel, the following vulnerability has been resolved: rtnetlink: add missing... Unknown Unreviewed

CVE-2026-31692 was published Apr 30, 2026

Apache Airflow's SMTP provider `SmtpHook` called Python's `smtplib.SMTP.starttls()` without an... Unknown Unreviewed

CVE-2026-41016 was published Apr 30, 2026

SANE protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows... Moderate Unreviewed

CVE-2026-6531 was published Apr 30, 2026

iLBC audio codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service Moderate Unreviewed

CVE-2026-6529 was published Apr 30, 2026

Dissection engine LZ77 decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows... Moderate Unreviewed

CVE-2026-6533 was published Apr 30, 2026

ASN.1 PER protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial... Moderate Unreviewed

CVE-2026-6527 was published Apr 30, 2026

USB HID protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows... Moderate Unreviewed

CVE-2026-6534 was published Apr 30, 2026

TLS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 allows denial of service Moderate Unreviewed

CVE-2026-6528 was published Apr 30, 2026

Kismet protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of... Moderate Unreviewed

CVE-2026-6532 was published Apr 30, 2026

SMB2 protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of... Moderate Unreviewed

CVE-2026-6867 was published Apr 30, 2026

As dhclient is building an environment to pass to dhclient-script, it may need to resize the... Unknown Unreviewed

CVE-2026-42512 was published Apr 30, 2026

Out-of-bounds read vulnerability in ASR Kestrel (nr_fw modules) allows Overflow Buffers. This... High Unreviewed

CVE-2026-42799 was published Apr 30, 2026

ZigBee protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of... Moderate Unreviewed

CVE-2026-6537 was published Apr 30, 2026

BEEP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of... Moderate Unreviewed

CVE-2026-6538 was published Apr 30, 2026

DCP-ETSI protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial... Moderate Unreviewed

CVE-2026-6530 was published Apr 30, 2026

Incorrect packet validation allowed unbounded recursion parsing SCTP chunk parameters. This can... Unknown Unreviewed

CVE-2026-7164 was published Apr 30, 2026

DLMS/COSEM protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 Moderate Unreviewed

CVE-2026-6536 was published Apr 30, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

299,926 advisories