GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
2 advisories
Axios has Unrestricted Cloud Metadata Exfiltration via Header Injection Chain
Moderate
CVE-2026-40175
was published
for
axios
(npm)
Apr 10, 2026
Renovate vulnerable to Azure DevOps token leakage in logs
Moderate
GHSA-36rh-ggpr-j3gj
was published
for
renovate
(npm)
Sep 14, 2020
ProTip!
Advisories are also available from the
GraphQL API