GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
91
GitHub Actions
54
Go
4,194
Maven
5,000+
npm
5,000+
NuGet
1,021
pip
5,000+
Pub
13
RubyGems
1,102
Rust
1,422
Swift
61
Unreviewed advisories
All unreviewed
5,000+
162,296 advisories
Filter by severity
Out of bounds read in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote...
Moderate
Unreviewed
CVE-2026-13890
was published
Jul 1, 2026
Inappropriate implementation in Autofill in Google Chrome prior to 150.0.7871.47 allowed a remote...
Moderate
Unreviewed
CVE-2026-13895
was published
Jul 1, 2026
Out of bounds read in Codecs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to...
Moderate
Unreviewed
CVE-2026-13906
was published
Jul 1, 2026
Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47...
Moderate
Unreviewed
CVE-2026-13877
was published
Jul 1, 2026
Use after free in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed an attacker on the...
Moderate
Unreviewed
CVE-2026-13879
was published
Jul 1, 2026
Out of bounds read in Layout in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to...
Moderate
Unreviewed
CVE-2026-13873
was published
Jul 1, 2026
Race in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a local attacker to...
Moderate
Unreviewed
CVE-2026-13905
was published
Jul 1, 2026
Inappropriate implementation in iOSWeb in Google Chrome on iOS prior to 150.0.7871.47 allowed a...
Moderate
Unreviewed
CVE-2026-13907
was published
Jul 1, 2026
Out of bounds read in FFmpeg in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to...
Moderate
Unreviewed
CVE-2026-13858
was published
Jul 1, 2026
Inappropriate implementation in Geometry in Google Chrome prior to 150.0.7871.47 allowed a remote...
Moderate
Unreviewed
CVE-2026-13857
was published
Jul 1, 2026
Incorrect security UI in Autofill in Google Chrome on Windows prior to 150.0.7871.47 allowed a...
Moderate
Unreviewed
CVE-2026-13860
was published
Jul 1, 2026
Inappropriate implementation in Input in Google Chrome on Linux prior to 150.0.7871.47 allowed a...
Moderate
Unreviewed
CVE-2026-13810
was published
Jul 1, 2026
Inappropriate implementation in Enterprise in Google Chrome prior to 150.0.7871.47 allowed a...
Moderate
Unreviewed
CVE-2026-13828
was published
Jul 1, 2026
Insufficient data validation in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47...
Moderate
Unreviewed
CVE-2026-13808
was published
Jul 1, 2026
Hono before 4.10.2 (fixed in 4.10.3) contains a flaw in its CORS middleware: when the origin is...
Moderate
Unreviewed
CVE-2025-71381
was published
Jul 1, 2026
Invoice Ninja through 5.13.26 contains an open redirect vulnerability in the client portal login...
Moderate
Unreviewed
CVE-2026-58450
was published
Jul 1, 2026
Presenton before 0.8.8-beta bundles an MCP server that, on server/Docker deployments configured...
Moderate
Unreviewed
CVE-2026-58446
was published
Jul 1, 2026
A stored cross-site scripting vulnerability was identified in GitHub Enterprise Server that...
Moderate
Unreviewed
CVE-2026-10585
was published
Jul 1, 2026
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 is vulnerable to cross-site scripting....
Moderate
Unreviewed
CVE-2025-36323
was published
Jun 30, 2026
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 could allow an authenticated user to...
Moderate
Unreviewed
CVE-2025-36327
was published
Jun 30, 2026
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 could allow an authenticated user to...
Moderate
Unreviewed
CVE-2025-36333
was published
Jun 30, 2026
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 s vulnerable to server-side request...
Moderate
Unreviewed
CVE-2025-36324
was published
Jun 30, 2026
A missing authorization vulnerability was identified in GitHub Enterprise Server that allowed an...
Moderate
Unreviewed
CVE-2026-9132
was published
Jun 30, 2026
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 could allow a remote attacker to obtain...
Moderate
Unreviewed
CVE-2025-36328
was published
Jun 30, 2026
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 transmits data in clear text that could...
Moderate
Unreviewed
CVE-2025-36336
was published
Jun 30, 2026
ProTip!
Advisories are also available from the
GraphQL API