Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
70
GitHub Actions
52
Go
3,894
Maven
5,000+
npm
5,000+
NuGet
963
pip
5,000+
Pub
13
RubyGems
1,061
Rust
1,373
Swift
54
Unreviewed advisories
All unreviewed
5,000+

3,560 advisories

Loading
Zohocorp ManageEngine ADSelfService Plus version before 6525, DataSecurity Plus before 6264 and... High Unreviewed
CVE-2026-2740 was published May 21, 2026
Insufficient Validation of Names During AXFR Moderate Unreviewed
CVE-2026-42000 was published May 21, 2026
A potential security vulnerability has been identified in the HP Linux Imaging and Printing... High Unreviewed
CVE-2026-8632 was published May 20, 2026
Dell SmartFabric Storage Software, versions prior to 1.4.5, contains an Improper Neutralization... Moderate Unreviewed
CVE-2026-35070 was published May 20, 2026
Microsoft is aware of a security feature bypass vulnerability in Windows publicly referred to as ... Moderate Unreviewed
CVE-2026-45585 was published May 20, 2026
ngrok v4.3.3 and 5.0.0-beta.2 is vulnerable to Command Injection. High Unreviewed
CVE-2025-57282 was published May 18, 2026
A vulnerability has been found in vercel ai up to 3.0.97. Impacted is the function run of the... Low Unreviewed
CVE-2026-8767 was published May 18, 2026
Oinone Pamirs 7.0.0 contains a command injection vulnerability in CommandHelper.executeCommands.... High Unreviewed
CVE-2026-39054 was published May 15, 2026
Northern.tech CFEngine Enterprise and Community before 3.21.8, 3.24.3, and 3.27.0 allows Command... High Unreviewed
CVE-2026-24712 was published May 14, 2026
When BIG-IP DNS is provisioned, a vulnerability exists in an undisclosed iControl REST and BIG-IP... High Unreviewed
CVE-2026-40061 was published May 13, 2026
A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated... High Unreviewed
CVE-2026-40698 was published May 13, 2026
A vulnerability exists in BIG-IP systems where a highly privileged, authenticated attacker with... High Unreviewed
CVE-2026-41953 was published May 13, 2026
U-SPEED AC1200 Gigabit Wi-Fi Router (Model: T18-21K) V1.0 is vulnerable to Command Injection. The... High Unreviewed
CVE-2026-36741 was published May 13, 2026
Command injection vulnerabilities exist in the command line interface (CLI) service accessed by... High Unreviewed
CVE-2026-44871 was published May 13, 2026
Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10... High Unreviewed
CVE-2026-44865 was published May 12, 2026
Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10... High Unreviewed
CVE-2026-44866 was published May 12, 2026
Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10... High Unreviewed
CVE-2026-44868 was published May 12, 2026
A command injection vulnerability exists in the web-based management interface of AOS-8 and AOS... High Unreviewed
CVE-2026-44872 was published May 12, 2026
Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10... High Unreviewed
CVE-2026-44867 was published May 12, 2026
Command injection vulnerabilities exist in the command line interface (CLI) service accessed by... High Unreviewed
CVE-2026-44870 was published May 12, 2026
Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10... High Unreviewed
CVE-2026-44869 was published May 12, 2026
Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10... High Unreviewed
CVE-2026-44853 was published May 12, 2026
Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10... High Unreviewed
CVE-2026-44854 was published May 12, 2026
A vulnerability in the command line interface of Access Points running AOS-10 could allow an... High Unreviewed
CVE-2026-23823 was published May 12, 2026
An administrative user with access to configure webhooks can execute arbitrary commands by... Critical Unreviewed
CVE-2026-8431 was published May 12, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database