GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
41
Go
3,003
Maven
5,000+
npm
4,732
NuGet
788
pip
4,341
Pub
12
RubyGems
987
Rust
1,137
Swift
50
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
290,814 advisories
Filter by severity
A security vulnerability has been detected in feng_ha_ha/megagao ssm-erp and production_ssm up to...
Moderate
Unreviewed
CVE-2026-2860
was published
Feb 21, 2026
A vulnerability was found in a Moodle TeX filter administrative setting where insufficient...
High
Unreviewed
CVE-2026-26046
was published
Feb 21, 2026
A flaw was identified in Moodle’s backup restore functionality where specially crafted backup...
High
Unreviewed
CVE-2026-26045
was published
Feb 21, 2026
A vulnerability was detected in Foswiki up to 2.1.10. The affected element is an unknown function...
Moderate
Unreviewed
CVE-2026-2861
was published
Feb 21, 2026
A flaw has been found in feng_ha_ha/megagao ssm-erp and production_ssm up to...
Moderate
Unreviewed
CVE-2026-2863
was published
Feb 21, 2026
A denial-of-service vulnerability was identified in Moodle’s TeX formula editor. When rendering...
Moderate
Unreviewed
CVE-2026-26047
was published
Feb 21, 2026
When a DAG failed during parsing, Airflow’s error-reporting in the UI could include the full...
Unknown
Unreviewed
CVE-2025-65995
was published
Feb 21, 2026
PDF-XChange Editor TrackerUpdate Uncontrolled Search Path Element Local Privilege Escalation...
High
Unreviewed
CVE-2026-2040
was published
Feb 21, 2026
MLflow Use of Default Password Authentication Bypass Vulnerability. This vulnerability allows...
Critical
Unreviewed
CVE-2026-2635
was published
Feb 21, 2026
Sricam DeviceViewer 3.12.0.1 contains a local buffer overflow vulnerability in the user...
High
Unreviewed
CVE-2019-25435
was published
Feb 21, 2026
phpMoAdmin 1.1.5 contains a cross-site request forgery vulnerability that allows attackers to...
Moderate
Unreviewed
CVE-2019-25451
was published
Feb 21, 2026
Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2026-2034
was published
Feb 21, 2026
delpino73 Blue-Smiley-Organizer 1.32 contains an SQL injection vulnerability in the datetime...
High
Unreviewed
CVE-2019-25431
was published
Feb 21, 2026
OrientDB 3.0.17 contains a reflected cross-site scripting vulnerability that allows attackers to...
Moderate
Unreviewed
CVE-2019-25449
was published
Feb 21, 2026
GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2026-2047
was published
Feb 21, 2026
phpMoAdmin 1.1.5 contains a reflected cross-site scripting vulnerability that allows...
Moderate
Unreviewed
CVE-2019-25453
was published
Feb 21, 2026
LabCollector 5.423 contains multiple SQL injection vulnerabilities that allow unauthenticated...
High
Unreviewed
CVE-2019-25438
was published
Feb 21, 2026
ProTip!
Advisories are also available from the
GraphQL API