Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
70
GitHub Actions
52
Go
3,931
Maven
5,000+
npm
5,000+
NuGet
969
pip
5,000+
Pub
13
RubyGems
1,062
Rust
1,382
Swift
56
Unreviewed advisories
All unreviewed
5,000+

12,256 advisories

Loading
AgenticMail API/storage and outbound relay hardening fixes High
CVE-2026-47255 was published for @agenticmail/api (npm) May 29, 2026
tar has a PAX header desynchronization issue Moderate
GHSA-3pv8-6f4r-ffg2 was published for tar (Rust) May 29, 2026
woodruffw Credited to woodruffw
astral-tokio-tar has a PAX Header Desynchronization issue Moderate
GHSA-3cv2-h65g-fgmm was published for astral-tokio-tar (Rust) May 29, 2026
woodruffw Credited to woodruffw
Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 148.0.7778.216... High Unreviewed
CVE-2026-9969 was published May 29, 2026
Insufficient validation of untrusted input in WebShare in Google Chrome on Android prior to 148.0... High Unreviewed
CVE-2026-9977 was published May 29, 2026
Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 148.0.7778.216... High Unreviewed
CVE-2026-9982 was published May 29, 2026
Insufficient validation of untrusted input in Input in Google Chrome prior to 148.0.7778.216... Moderate Unreviewed
CVE-2026-9979 was published May 29, 2026
Insufficient validation of untrusted input in Printing in Google Chrome prior to 148.0.7778.216... Moderate Unreviewed
CVE-2026-9980 was published May 29, 2026
Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to... High Unreviewed
CVE-2026-9987 was published May 29, 2026
Insufficient validation of untrusted input in OptimizationGuide in Google Chrome prior to 148.0... Moderate Unreviewed
CVE-2026-9986 was published May 29, 2026
Insufficient validation of untrusted input in Media in Google Chrome on ChromeOS prior to 148.0... Moderate Unreviewed
CVE-2026-9985 was published May 29, 2026
Insufficient validation of untrusted input in iOS in Google Chrome on iOS prior to 148.0.7778.216... Low Unreviewed
CVE-2026-9950 was published May 29, 2026
Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 148.0.7778.216... High Unreviewed
CVE-2026-9914 was published May 29, 2026
Insufficient validation of untrusted input in WebGL in Google Chrome prior to 148.0.7778.216... High Unreviewed
CVE-2026-9880 was published May 29, 2026
Insufficient validation of untrusted input in UI in Google Chrome on Mac prior to 148.0.7778.216... High Unreviewed
CVE-2026-9885 was published May 29, 2026
Insufficient validation of untrusted input in GPU in Google Chrome on Android prior to 148.0.7778... High Unreviewed
CVE-2026-9898 was published May 29, 2026
Insufficient validation of untrusted input in Site Isolation in Google Chrome prior to 148.0.7778... Moderate Unreviewed
CVE-2026-9903 was published May 29, 2026
Insufficient validation of untrusted input in USB in Google Chrome prior to 148.0.7778.216... High Unreviewed
CVE-2026-10021 was published May 29, 2026
Insufficient validation of untrusted input in Skia in Google Chrome on Android prior to 148.0... High Unreviewed
CVE-2026-10020 was published May 29, 2026
Insufficient validation of untrusted input in Passwords in Google Chrome prior to 148.0.7778.216... Moderate Unreviewed
CVE-2026-10004 was published May 29, 2026
Improper Input Validation (CWE-20) in the Kibana Fleet agent policy management feature can lead... Moderate Unreviewed
CVE-2026-49095 was published May 28, 2026
An issue in SourceBans Material Admin before v.1.1.6 (3ecd95e) allows attackers to manipulate... High Unreviewed
CVE-2026-30760 was published May 28, 2026
Capsule TenantResource RawItems Cluster-Scoped Resource Creation Vulnerability Moderate
CVE-2026-22872 was published for github.com/projectcapsule/capsule (Go) May 28, 2026
b0b0haha Credited to b0b0haha
Capsule Namespace Hijacking via subresource Low
CVE-2026-30963 was published for github.com/projectcapsule/capsule (Go) May 28, 2026
xy585 Credited to xy585
An authenticated command injection vulnerability exists in the Archer BE450 v1 and BE7200 v1... High Unreviewed
CVE-2026-5509 was published May 27, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database