GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
238 advisories
Filter by severity
Exposure of sensitive system information to an unauthorized control sphere in Windows Kernel...
Moderate
Unreviewed
CVE-2026-50294
was published
Jul 14, 2026
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2026-61976
was published
Jul 13, 2026
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2026-61975
was published
Jul 13, 2026
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2026-61977
was published
Jul 13, 2026
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2026-57393
was published
Jul 13, 2026
The Azure Blob Storage container used for Gardyn device logs is publicly listable without...
Moderate
Unreviewed
CVE-2026-55726
was published
Jul 3, 2026
Unauthenticated Sensitive Data Exposure in Kit (formerly ConvertKit) for WooCommerce <= 2.1.5...
Moderate
Unreviewed
CVE-2026-57753
was published
Jul 2, 2026
Unauthenticated Sensitive Data Exposure in Bopo – WooCommerce Product Bundle Builder <= 1.1.6...
Moderate
Unreviewed
CVE-2026-57664
was published
Jun 26, 2026
Subscriber Sensitive Data Exposure in GetGenie <= 4.4.2 versions.
Moderate
Unreviewed
CVE-2026-57316
was published
Jun 26, 2026
Unauthenticated Sensitive Data Exposure in WCBoost – Products Compare <= 1.1.0 versions.
Moderate
Unreviewed
CVE-2026-57633
was published
Jun 26, 2026
A sensitive information disclosure security issue exists within the affected CompactLogix...
Moderate
Unreviewed
CVE-2026-9307
was published
Jun 16, 2026
Subscriber Sensitive Data Exposure in Visual Link Preview <= 2.4.1 versions.
Moderate
Unreviewed
CVE-2026-48878
was published
Jun 15, 2026
Subscriber Sensitive Data Exposure in Contest Gallery <= 28.1.7 versions.
Moderate
Unreviewed
CVE-2026-42660
was published
Jun 15, 2026
Subscriber Sensitive Data Exposure in WPPizza <= 3.19.9 versions.
Moderate
Unreviewed
CVE-2026-40796
was published
Jun 15, 2026
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2026-24618
was published
Jun 12, 2026
Improper access control in AMD uProf may allow a local attacker with user privileges to write to...
Moderate
Unreviewed
CVE-2026-0466
was published
Jun 9, 2026
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Tips...
Moderate
Unreviewed
CVE-2026-49077
was published
Jun 4, 2026
The SAP Gateway allows attackers to inject content into error messages, potentially leading to...
Moderate
Unreviewed
CVE-2026-44749
was published
May 26, 2026
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2026-27349
was published
May 21, 2026
An information disclosure vulnerability in the Chronosphere Chronocollector enables an...
Moderate
Unreviewed
CVE-2026-0239
was published
May 13, 2026
An information disclosure vulnerability in Trust Protection Foundation enables an authenticated...
Moderate
Unreviewed
CVE-2026-0240
was published
May 13, 2026
SEPPmail Secure Email Gateway before version 15.0.4 exposes server environment variables through...
Moderate
Unreviewed
CVE-2026-7864
was published
May 8, 2026
Vvveb before 1.0.8.2 contains an information disclosure vulnerability in the cron controller that...
Moderate
Unreviewed
CVE-2026-41928
was published
May 8, 2026
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2026-25468
was published
May 7, 2026
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2026-42644
was published
Apr 29, 2026
ProTip!
Advisories are also available from the
GraphQL API