GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
27,352 advisories
Filter by severity
SAP NetWeaver Application Server ABAP allows an authenticated attacker to leverage logical errors...
Critical
Unreviewed
CVE-2026-44747
was published
Jul 14, 2026
SAP Commerce Cloud could retain a sample OAuth2 client with publicly documented sample...
Critical
Unreviewed
CVE-2026-44761
was published
Jul 14, 2026
Due to an HTTP Request Smuggling vulnerability in SAP Approuter, an unauthenticated attacker...
Critical
Unreviewed
CVE-2026-27690
was published
Jul 14, 2026
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow a heap out-of-bounds read via a long...
Critical
Unreviewed
CVE-2026-58102
was published
Jul 14, 2026
9Router through version 0.4.41 contain an unauthenticated information disclosure vulnerability...
Critical
Unreviewed
CVE-2026-62327
was published
Jul 14, 2026
9Router through version 0.4.41 contains an unauthenticated access vulnerability that allows...
Critical
Unreviewed
CVE-2026-59801
was published
Jul 14, 2026
EIPStackGroup OpENer 2.3.0 (commit 76b95cf) suffers from an Incorrect Access Control...
Critical
Unreviewed
CVE-2026-51538
was published
Jul 14, 2026
SQL Injection vulnerability in Shenzhou Shihan Video Conference System v.1.0 allows a remote...
Critical
Unreviewed
CVE-2026-51821
was published
Jul 14, 2026
An issue in D-Link DIR-1253 v.1.0.1.250923.142435 allows an attacker to escalate privileges via...
Critical
Unreviewed
CVE-2026-52533
was published
Jul 14, 2026
OpENer 2.3.0 (master branch up to commit 76b95cf) is vulnerable to a severe memory corruption...
Critical
Unreviewed
CVE-2026-51540
was published
Jul 14, 2026
EIPStackGroup OpENer 2.3.0 (commit 76b95cf) has an out-of-bounds read issue in Connection Manager...
Critical
Unreviewed
CVE-2026-51537
was published
Jul 14, 2026
In OpENer 2.3.0 (commit 76b95cf) when parsing incoming CIP (Common Industrial Protocol) network...
Critical
Unreviewed
CVE-2026-51536
was published
Jul 14, 2026
OpENer 2.3.0 (commit 76b95cf) has an out-of-bounds read issue in CIP message parsing when...
Critical
Unreviewed
CVE-2026-51541
was published
Jul 14, 2026
ServiceNow has addressed a remote code execution vulnerability that was identified in the...
Critical
Unreviewed
CVE-2026-6875
was published
Jul 13, 2026
Rejetto HFS 3.0.0 through 3.2.0 derives its session-cookie signing key from the non-cryptographic...
Critical
Unreviewed
CVE-2026-61500
was published
Jul 13, 2026
mcp-gitlab contains a path traversal vulnerability in the job_id parameter of build/index.js that...
Critical
Unreviewed
CVE-2026-61462
was published
Jul 13, 2026
Storable versions before 3.41 for Perl have a signed integer overflow when deserializing a...
Critical
Unreviewed
CVE-2026-57433
was published
Jul 13, 2026
Perl versions through 5.43.9 produce silently incorrect regular expression matches when an...
Critical
Unreviewed
CVE-2026-13221
was published
Jul 13, 2026
Vitec Flamingo 4.12.2 contains an unauthenticated OS command injection vulnerability in the admin...
Critical
Unreviewed
CVE-2026-60121
was published
Jul 13, 2026
Vitec Flamingo 4.12.2 contains an unauthenticated OS command injection vulnerability in the admin...
Critical
Unreviewed
CVE-2026-61498
was published
Jul 13, 2026
Remote Code Execution vulnerability exists in ThemisNETPanel due to missing authentication for a...
Critical
Unreviewed
CVE-2026-6847
was published
Jul 13, 2026
A Missing Authorization vulnerability in the repository creation functionality in Google Cloud...
Critical
Unreviewed
CVE-2026-14934
was published
Jul 13, 2026
Incorrect Privilege Assignment vulnerability in properfraction MailOptin mailoptin allows...
Critical
Unreviewed
CVE-2026-57813
was published
Jul 13, 2026
Improper Control of Generation of Code ('Code Injection') vulnerability in Realtyna Realtyna...
Critical
Unreviewed
CVE-2026-57811
was published
Jul 13, 2026
Deserialization of Untrusted Data vulnerability in wpWax Directorist directorist allows Object...
Critical
Unreviewed
CVE-2026-59518
was published
Jul 13, 2026
ProTip!
Advisories are also available from the
GraphQL API