GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
92
GitHub Actions
54
Go
4,258
Maven
5,000+
npm
5,000+
NuGet
1,029
pip
5,000+
Pub
13
RubyGems
1,103
Rust
1,483
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
9,388 advisories
Filter by severity
The OpenAI Codex desktop app for macOS rendered remote images from Markdown in model responses....
Unknown
Unreviewed
CVE-2026-14898
was published
Jul 6, 2026
Exposure of sensitive information to an unauthorized actor in Microsoft Edge (Chromium-based)...
Moderate
Unreviewed
CVE-2026-56646
was published
Jul 3, 2026
A vulnerability has been found in DeepMyst Mysti up to 0.4.0. The affected element is the...
Moderate
Unreviewed
CVE-2026-14611
was published
Jul 3, 2026
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation...
Moderate
Unreviewed
CVE-2026-58033
was published
Jul 1, 2026
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation...
Low
Unreviewed
CVE-2026-58036
was published
Jul 1, 2026
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation...
Moderate
Unreviewed
CVE-2026-58024
was published
Jul 1, 2026
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation...
Moderate
Unreviewed
CVE-2026-58027
was published
Jul 1, 2026
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation...
Low
Unreviewed
CVE-2026-58026
was published
Jul 1, 2026
The Slim SEO – A Fast & Automated SEO Plugin For WordPress plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2026-12408
was published
Jul 1, 2026
Capgo before 12.128.2 contains an information disclosure vulnerability in the /private...
Moderate
Unreviewed
CVE-2026-56318
was published
Jul 1, 2026
Capgo before 12.128.2 contains unauthenticated security definer RPC functions get_user_id and...
High
Unreviewed
CVE-2026-56300
was published
Jul 1, 2026
Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote...
Moderate
Unreviewed
CVE-2026-14146
was published
Jul 1, 2026
Inappropriate implementation in Input in Google Chrome on Android prior to 150.0.7871.47 allowed...
Moderate
Unreviewed
CVE-2026-14096
was published
Jul 1, 2026
Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote...
Moderate
Unreviewed
CVE-2026-14098
was published
Jul 1, 2026
Inappropriate implementation in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote...
Moderate
Unreviewed
CVE-2026-14049
was published
Jul 1, 2026
Inappropriate implementation in Views in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed...
Moderate
Unreviewed
CVE-2026-14062
was published
Jul 1, 2026
Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote...
Moderate
Unreviewed
CVE-2026-14004
was published
Jul 1, 2026
Inappropriate implementation in Input in Google Chrome on Linux prior to 150.0.7871.47 allowed a...
Moderate
Unreviewed
CVE-2026-13810
was published
Jul 1, 2026
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is affected by an information...
Low
Unreviewed
CVE-2026-9836
was published
Jun 30, 2026
Hospital Quening Management developed by Advantech has a Sensitive Data Exposure vulnerability,...
High
Unreviewed
CVE-2026-14161
was published
Jun 30, 2026
Insecure Permissions vulnerability in MSI NBFoundation Service v.2.0.2506.1201 allows a remote...
High
Unreviewed
CVE-2026-37453
was published
Jun 25, 2026
Insecure Permissions vulnerability in MSI NBFoundation Service v.2.0.2506.1201 allows a remote...
High
Unreviewed
CVE-2026-37454
was published
Jun 25, 2026
Insecure Permissions vulnerability in MSI NBFoundation Service v.2.0.2506.1201 allows a remote...
High
Unreviewed
CVE-2026-37452
was published
Jun 25, 2026
Apple M1 GPUs retain register file data between compute shader dispatches from different...
High
Unreviewed
CVE-2026-49269
was published
Jun 24, 2026
The 24liveblog - live blog tool plugin for WordPress is vulnerable to Exposure of Sensitive...
Moderate
Unreviewed
CVE-2026-9183
was published
Jun 24, 2026
ProTip!
Advisories are also available from the
GraphQL API