GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,295
Maven
5,000+
npm
5,000+
NuGet
1,029
pip
5,000+
Pub
13
RubyGems
1,107
Rust
1,492
Swift
61
Unreviewed advisories
All unreviewed
5,000+
68 advisories
Filter by severity
A weakness has been identified in Sipeed PicoClaw up to 0.2.9. Affected by this issue is some...
Low
Unreviewed
CVE-2026-15318
was published
Jul 10, 2026
A flaw has been found in mettle sendportal up to 3.0.1. This vulnerability affects unknown code...
Low
Unreviewed
CVE-2026-15191
was published
Jul 9, 2026
A vulnerability was determined in Harness up to 2.28.2. This vulnerability affects the function...
Low
Unreviewed
CVE-2026-15036
was published
Jul 8, 2026
A security vulnerability has been detected in nextlevelbuilder GoClaw up to 3.13.0-beta.2....
Low
Unreviewed
CVE-2026-14716
was published
Jul 5, 2026
A security vulnerability has been detected in SourceCodester CET Automated Grading System with AI...
Low
Unreviewed
CVE-2026-14608
was published
Jul 3, 2026
A security flaw has been discovered in CodeAstro Complaint Management System 1.0. The affected...
Low
Unreviewed
CVE-2026-13549
was published
Jun 29, 2026
A vulnerability was detected in CherryHQ cherry-studio up to 1.9.7. This affects the function...
Low
Unreviewed
CVE-2026-13534
was published
Jun 29, 2026
A vulnerability was identified in Databend up to 1.2.881 on HTTP. This affects the function...
Low
Unreviewed
CVE-2026-13512
was published
Jun 29, 2026
A weakness has been identified in Chess Play and Learn App up to 4.9.42 on Android. This issue...
Low
Unreviewed
CVE-2026-13514
was published
Jun 29, 2026
A flaw has been found in khoj-ai khoj up to 2.0.0-beta.28. This impacts an unknown function of...
Low
Unreviewed
CVE-2026-13508
was published
Jun 29, 2026
Snipe-IT has Improper Authorization in File Deletion (IDOR)
Low
CVE-2026-55519
was published
for
snipe/snipe-it
(Composer)
Jun 23, 2026
A security flaw has been discovered in BerriAI litellm up to 1.82.5. Affected is the function...
Low
Unreviewed
CVE-2026-12797
was published
Jun 21, 2026
OpenBao's System Backend allows Unauthorized Management of the containing Namespace
Low
CVE-2026-55775
was published
for
github.com/openbao/openbao
(Go)
Jun 19, 2026
A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown...
Low
Unreviewed
CVE-2026-12189
was published
Jun 15, 2026
A vulnerability was identified in Groww Stock, Mutual Fund, Gold App up to 20260805 on Android....
Low
Unreviewed
CVE-2026-12065
was published
Jun 12, 2026
A vulnerability was identified in Weaviate up to 1.37.7. This vulnerability affects the function...
Low
Unreviewed
CVE-2026-11500
was published
Jun 8, 2026
A vulnerability has been found in NousResearch hermes-agent up to 0.12.0. This affects the...
Low
Unreviewed
CVE-2026-11461
was published
Jun 8, 2026
Apache Airflow has an Improper Authorization issue
Low
CVE-2026-40963
was published
for
apache-airflow
(pip)
Jun 1, 2026
AstrBot: Manipulation of astr_main_agent's session_id parameter leads to authorization bypass
Low
CVE-2026-10212
was published
for
AstrBot
(pip)
Jun 1, 2026
A vulnerability was determined in AstrBotDevs AstrBot 4.23.6. Affected by this issue is the...
Low
Unreviewed
CVE-2026-10211
was published
Jun 1, 2026
A security vulnerability has been detected in QuantumNous new-api up to 0.12.1. This affects the...
Low
Unreviewed
CVE-2026-9306
was published
May 26, 2026
SpiceDB: Caveat structures with nested lists can result in improper cache reuse
Low
CVE-2026-46668
was published
for
github.com/authzed/spicedb
(Go)
May 21, 2026
A vulnerability has been found in Tencent WeKnora up to 0.3.6. Affected by this issue is the...
Low
Unreviewed
CVE-2026-8786
was published
May 18, 2026
A flaw has been found in JeecgBoot 3.9.1. The impacted element is an unknown function of the file...
Low
Unreviewed
CVE-2026-8196
was published
May 9, 2026
A vulnerability was detected in CodeCanyon Perfex CRM up to 3.4.1. This affects the function...
Low
Unreviewed
CVE-2026-7782
was published
May 5, 2026
ProTip!
Advisories are also available from the
GraphQL API