Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
41
Go
3,044
Maven
5,000+
npm
4,783
NuGet
825
pip
4,382
Pub
12
RubyGems
987
Rust
1,143
Swift
50
Unreviewed advisories
All unreviewed
5,000+

2,246 advisories

Loading
IM-LogicDesigner module of intra-mart Accel Platform contains insecure deserialization issue.... High Unreviewed
CVE-2026-27776 was published Feb 27, 2026
Deserialization of untrusted data in the LanguageModel class of Flair from versions 0.4.1 to... High Unreviewed
CVE-2026-3071 was published Feb 26, 2026
Deserialization of Untrusted Data vulnerability in Stylemix uListing ulisting allows Object... High Unreviewed
CVE-2026-28138 was published Feb 26, 2026
LangGraph: BaseCache Deserialization of Untrusted Data may lead to Remote Code Execution Moderate
CVE-2026-27794 was published for langgraph-checkpoint (pip) Feb 25, 2026
zdi-disclosures Credited to zdi-disclosures
c3p0 vulnerable to Remote Code Execution via unsafe deserialization of userOverridesAsString property High
CVE-2026-27830 was published for com.mchange:c3p0 (Maven) Feb 25, 2026
dpp Credited to dpp
mchange-commons-java: Remote Code Execution via JNDI Reference Resolution High
CVE-2026-27727 was published for com.mchange:mchange-commons-java (Maven) Feb 25, 2026
dpp Credited to dpp
Altec DocLink (now maintained by Beyond Limits Inc.) version 4.0.336.0 exposes insecure .NET... Critical Unreviewed
CVE-2026-26222 was published Feb 24, 2026
The Print Service component of Fiserv Originate Loans Peripherals (formerly Velocity Services) in... High Unreviewed
CVE-2026-21665 was published Feb 24, 2026
Apache Camel Deserializes Untrusted Data in its LevelDB Component High
CVE-2026-25747 was published for org.apache.camel:camel-leveldb (Maven) Feb 23, 2026
datapizza-ai has unsafe deserialization via pickle.loads() in RedisCache Low
CVE-2026-2970 was published for datapizza-ai-core (pip) Feb 23, 2026
funadmin: Deserialization Vulnerability in Backend Endpoint via AuthCloudService getMember Function Low
CVE-2026-2898 was published for funadmin/funadmin (Composer) Feb 22, 2026
GFI Archiver MArc.Core Deserialization of Untrusted Data Remote Code Execution Vulnerability.... High Unreviewed
CVE-2026-2037 was published Feb 21, 2026
GFI Archiver MArc.Store Deserialization of Untrusted Data Remote Code Execution Vulnerability.... High Unreviewed
CVE-2026-2036 was published Feb 21, 2026
Deserialization of Untrusted Data vulnerability in A WP Life Image Gallery – Lightbox Gallery,... High Unreviewed
CVE-2026-22345 was published Feb 20, 2026
Deserialization of Untrusted Data vulnerability in A WP Life Slider Responsive Slideshow – Image... High Unreviewed
CVE-2026-22346 was published Feb 20, 2026
Deserialization of Untrusted Data vulnerability in Dotstore Woocommerce Category Banner... High Unreviewed
CVE-2026-22354 was published Feb 20, 2026
Deserialization of Untrusted Data vulnerability in leafcolor Applay - Shortcodes applay... High Unreviewed
CVE-2026-22384 was published Feb 20, 2026
Deserialization of Untrusted Data vulnerability in ThemeREX Lorem Ipsum | Books & Media Store... Critical Unreviewed
CVE-2025-69405 was published Feb 20, 2026
Deserialization of Untrusted Data vulnerability in ThemeREX Extreme Store extremestore allows... Critical Unreviewed
CVE-2025-69404 was published Feb 20, 2026
Deserialization of Untrusted Data vulnerability in themesflat Themesflat Elementor themesflat... Critical Unreviewed
CVE-2025-69382 was published Feb 20, 2026
Deserialization of Untrusted Data vulnerability in magepeopleteam Booking and Rental Manager... High Unreviewed
CVE-2025-69328 was published Feb 20, 2026
Deserialization of Untrusted Data vulnerability in Jthemes Prestige prestige allows Object... Critical Unreviewed
CVE-2025-69329 was published Feb 20, 2026
Deserialization of Untrusted Data vulnerability in ThemeGoods Capella capella allows Object... Critical Unreviewed
CVE-2025-69370 was published Feb 20, 2026
Deserialization of Untrusted Data vulnerability in AncoraThemes KindlyCare kindlycare allows... Critical Unreviewed
CVE-2025-69371 was published Feb 20, 2026
Deserialization of Untrusted Data vulnerability in AncoraThemes SevenHills sevenhills allows... Critical Unreviewed
CVE-2025-69372 was published Feb 20, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database