豆豆友情提示:这是一个非官方 GitHub 代理镜像,主要用于网络测试或访问加速。请勿在此进行登录、注册或处理任何敏感信息。进行这些操作请务必访问官方网站 github.com。 Raw 内容也通过此代理提供。
Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,549
Maven
5,000+
npm
5,000+
NuGet
917
pip
4,798
Pub
13
RubyGems
1,038
Rust
1,237
Swift
53
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,532 advisories

Loading
Vvveb prior to 1.0.8.1 contains a server-side request forgery vulnerability in the oEmbedProxy... High Unreviewed
CVE-2026-34428 was published Apr 20, 2026
A vulnerability was determined in Qibo CMS 1.0. Affected by this issue is some unknown... Moderate Unreviewed
CVE-2026-6649 was published Apr 20, 2026
A security vulnerability has been detected in moxi624 Mogu Blog v2 up to 5.2. Affected by this... Moderate Unreviewed
CVE-2026-6625 was published Apr 20, 2026
A vulnerability was detected in langgenius dify up to 0.6.9. This vulnerability affects the... Moderate Unreviewed
CVE-2026-6617 was published Apr 20, 2026
A flaw has been found in langgenius dify up to 1.13.3. This issue affects the function... Moderate Unreviewed
CVE-2026-6618 was published Apr 20, 2026
A security vulnerability has been detected in TransformerOptimus SuperAGI up to 0.0.14. This... Moderate Unreviewed
CVE-2026-6616 was published Apr 20, 2026
A weakness has been identified in modelscope agentscope up to 1.0.18. This vulnerability affects... Moderate Unreviewed
CVE-2026-6606 was published Apr 20, 2026
A vulnerability was identified in modelscope agentscope up to 1.0.18. Affected by this issue is... Moderate Unreviewed
CVE-2026-6604 was published Apr 20, 2026
A security flaw has been discovered in modelscope agentscope up to 1.0.18. This affects the... Moderate Unreviewed
CVE-2026-6605 was published Apr 20, 2026
A security flaw has been discovered in vibrantlabsai RAGAS up to 0.4.3. The affected element is... Moderate Unreviewed
CVE-2026-6587 was published Apr 20, 2026
A vulnerability was detected in PHPEMS 11.0. This affects the function temppage of the file /app... Moderate Unreviewed
CVE-2026-6573 was published Apr 19, 2026
OpenHarness before commit bd4df81 contains a server-side request forgery vulnerability in the... High Unreviewed
CVE-2026-40516 was published Apr 17, 2026
A vulnerability was determined in prasathmani TinyFileManager up to 2.6. Affected by this... Moderate Unreviewed
CVE-2026-6497 was published Apr 17, 2026
GREENmod uses named pipes for communication between plugins, the web portal, and the system... Moderate Unreviewed
CVE-2026-5131 was published Apr 17, 2026
A server-side request forgery (ssrf) vulnerability [CWE-918] vulnerability in Fortinet FortiSOAR... Moderate Unreviewed
CVE-2025-59809 was published Apr 14, 2026
A vulnerability was identified in HummerRisk up to 1.5.0. This vulnerability affects the function... Moderate Unreviewed
CVE-2026-6220 was published Apr 14, 2026
A weakness has been identified in DbGate up to 7.1.4. The impacted element is the function... Moderate Unreviewed
CVE-2026-6215 was published Apr 13, 2026
An attacker can control a server-side HTTP request by supplying a crafted URL, causing the server... High Unreviewed
CVE-2026-5936 was published Apr 13, 2026
A vulnerability was identified in AstrBotDevs AstrBot up to 4.22.1. The affected element is the... Moderate Unreviewed
CVE-2026-6119 was published Apr 12, 2026
The UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin... Moderate Unreviewed
CVE-2026-4979 was published Apr 11, 2026
GeoNode versions 4.0 before 4.4.5 and 5.0 before 5.0.2 contain a server-side request forgery... Moderate Unreviewed
CVE-2026-39921 was published Apr 10, 2026
GeoNode versions 4.0 before 4.4.5 and 5.0 before 5.0.2 contain a server-side request forgery... Moderate Unreviewed
CVE-2026-39922 was published Apr 10, 2026
Jizhicms v2.5.4 is vulnerable to Server-Side Request Forgery (SSRF) in User Evaluation, Message,... Critical Unreviewed
CVE-2025-50228 was published Apr 9, 2026
A security flaw has been discovered in bigsk1 openai-realtime-ui up to... Moderate Unreviewed
CVE-2026-5803 was published Apr 8, 2026
A flaw was found in Red Hat Quay's Proxy Cache configuration feature. When an organization... Moderate Unreviewed
CVE-2026-32591 was published Apr 8, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database