Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
40
Go
2,974
Maven
5,000+
npm
4,621
NuGet
788
pip
4,317
Pub
12
RubyGems
984
Rust
1,131
Swift
49
Unreviewed advisories
All unreviewed
5,000+

13,275 advisories

Loading
Mattermost doesn't properly validate channel membership at the time of data retrieval Low
CVE-2026-20796 was published for github.com/mattermost/mattermost-server (Go) Feb 13, 2026
Improper Certificate Validation vulnerability in Thales SafeNet Agent for Windows Logon on... Low Unreviewed
CVE-2026-0872 was published Feb 13, 2026
A permissive web security configuration may allow cross-origin restrictions enforced by modern... Low Unreviewed
CVE-2025-9292 was published Feb 13, 2026
NeuVector scanner insecurely handles passwords as command arguments Low
CVE-2025-67860 was published for github.com/neuvector/scanner (Go) Feb 12, 2026
qs's arrayLimit bypass in comma parsing allows denial of service Low
CVE-2026-2391 was published for qs (npm) Feb 12, 2026
SharokhAtaie ljharb
Credited to SharokhAtaie and ljharb
A logic issue was addressed with improved validation. This issue is fixed in iOS 18.7.5 and... Low Unreviewed
CVE-2026-20656 was published Feb 12, 2026
The issue was resolved by sanitizing logging. This issue is fixed in iOS 26.3 and iPadOS 26.3,... Low Unreviewed
CVE-2026-20663 was published Feb 12, 2026
A logic issue was addressed with improved checks. This issue is fixed in watchOS 26.3, tvOS 26.3,... Low Unreviewed
CVE-2026-20671 was published Feb 12, 2026
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Low Unreviewed
CVE-2026-20681 was published Feb 12, 2026
A logging issue was addressed with improved data redaction. This issue is fixed in macOS Tahoe 26... Low Unreviewed
CVE-2026-20646 was published Feb 12, 2026
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Low Unreviewed
CVE-2026-20601 was published Feb 12, 2026
An improper certificate validation vulnerability in PAN-OS allows users to connect Terminal... Low Unreviewed
CVE-2026-0228 was published Feb 11, 2026
A specially-crafted file can cause libjxl's decoder to read pixel data from uninitialized (but... Low Unreviewed
CVE-2025-12474 was published Feb 11, 2026
Proctorio Chrome Extension is a browser extension used for online proctoring. The extension... Low Unreviewed
CVE-2026-2345 was published Feb 11, 2026
A weak authentication vulnerability has been reported to affect File Station 5. The remote... Low Unreviewed
CVE-2025-57713 was published Feb 11, 2026
An allocation of resources without limits or throttling vulnerability has been reported to affect... Low Unreviewed
CVE-2025-57711 was published Feb 11, 2026
An allocation of resources without limits or throttling vulnerability has been reported to affect... Low Unreviewed
CVE-2025-58471 was published Feb 11, 2026
A use of uninitialized variable vulnerability has been reported to affect several QNAP operating... Low Unreviewed
CVE-2025-58466 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-58472 was published Feb 11, 2026
A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... Low Unreviewed
CVE-2025-58470 was published Feb 11, 2026
A relative path traversal vulnerability has been reported to affect Qsync Central. If a remote... Low Unreviewed
CVE-2025-58467 was published Feb 11, 2026
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating... Low Unreviewed
CVE-2025-59386 was published Feb 11, 2026
A path traversal vulnerability has been reported to affect File Station 5. If a local attacker... Low Unreviewed
CVE-2025-62855 was published Feb 11, 2026
A path traversal vulnerability has been reported to affect File Station 5. If a local attacker... Low Unreviewed
CVE-2025-62856 was published Feb 11, 2026
An uncontrolled resource consumption vulnerability has been reported to affect File Station 5. If... Low Unreviewed
CVE-2025-62854 was published Feb 11, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database