GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,859
Composer 5,189
Erlang 40
GitHub Actions 38
Go 2,925
Maven 6,243
npm 4,578
NuGet 786
pip 4,290
Pub 12
RubyGems 979
Rust 1,112
Swift 49

Unreviewed advisories

All unreviewed 288,310

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

137,801 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability was determined in WeKan up to 8.20. This affects an unknown part of the file... Moderate Unreviewed

CVE-2026-1898 was published Feb 5, 2026

A vulnerability was found in WeKan up to 8.20. Affected by this issue is some unknown... Moderate Unreviewed

CVE-2026-1897 was published Feb 5, 2026

A vulnerability has been found in WeKan up to 8.20. Affected by this vulnerability is the... Moderate Unreviewed

CVE-2026-1896 was published Feb 5, 2026

A flaw has been found in WeKan up to 8.20. Affected is the function applyWipLimit of the file... Moderate Unreviewed

CVE-2026-1895 was published Feb 5, 2026

A vulnerability was detected in WeKan up to 8.20. This impacts an unknown function of the file... Moderate Unreviewed

CVE-2026-1894 was published Feb 5, 2026

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud... Moderate Unreviewed

CVE-2024-40685 was published Feb 5, 2026

A weakness has been identified in ZenTao up to 21.7.6-85642. The impacted element is the function... Moderate Unreviewed

CVE-2026-1884 was published Feb 5, 2026

IBM Concert 1.0.0 through 2.1.0 is vulnerable to HTTP header injection, caused by improper... Moderate Unreviewed

CVE-2024-51451 was published Feb 5, 2026

IBM Concert 1.0.0 through 2.1.0 does not invalidate session after logout which could allow an... Moderate Unreviewed

CVE-2024-43181 was published Feb 5, 2026

IBM Cloud Pak System is vulnerable to cross-site scripting. This vulnerability allows users to... Moderate Unreviewed

CVE-2023-38017 was published Feb 4, 2026

IBM Cloud Pak System displays sensitive information in user messages that could aid in further... Moderate Unreviewed

CVE-2023-38010 was published Feb 4, 2026

A security flaw has been discovered in Open5GS up to 2.7.6. Affected by this vulnerability is the... Moderate Unreviewed

CVE-2025-15555 was published Feb 4, 2026

Improper Check for Unusual or Exceptional Conditions vulnerability in Drupal Group invite allows... Moderate Unreviewed

CVE-2026-0944 was published Feb 4, 2026

IBM Cloud Pak System does not set the secure attribute on authorization tokens or session cookies... Moderate Unreviewed

CVE-2023-38281 was published Feb 4, 2026

IBM Db2 Big SQL 7.6 on Cloud Pak for Data 4.8, 7.7 on Cloud Pak for Data 5.0, and 7.8 on Cloud... Moderate Unreviewed

CVE-2024-39724 was published Feb 4, 2026

Improper Neutralization of Input During Web Page Generation ("Cross-site Scripting")... Moderate Unreviewed

CVE-2026-0947 was published Feb 4, 2026

Incorrect Authorization vulnerability in Drupal Drupal Canvas allows Forceful Browsing.This issue... Moderate Unreviewed

CVE-2026-1553 was published Feb 4, 2026

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Microsoft Entra... Moderate Unreviewed

CVE-2026-0948 was published Feb 4, 2026

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network... Moderate Unreviewed

CVE-2026-20123 was published Feb 4, 2026

A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow... Moderate Unreviewed

CVE-2026-20111 was published Feb 4, 2026

A vulnerability in the Dynamic Vectoring and Streaming (DVS) Engine implementation of Cisco... Moderate Unreviewed

CVE-2026-20056 was published Feb 4, 2026

A vulnerability exists in F5 BIG-IP Container Ingress Services that may allow excessive... Moderate Unreviewed

CVE-2026-22549 was published Feb 4, 2026

Docker Desktop for Windows contains multiple incorrect permission assignment vulnerabilities in... Moderate Unreviewed

CVE-2025-14740 was published Feb 4, 2026

Stored Cross-Site Scripting (XSS) vulnerability type in Apidog in the version 2.7.15, where SVG... Moderate Unreviewed

CVE-2025-41085 was published Feb 4, 2026

On a Cryptobox platform where administrator segregation based on entities is used, some... Moderate Unreviewed

CVE-2026-0873 was published Feb 4, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

137,801 advisories