GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 31,043
Composer 5,887
Erlang 70
GitHub Actions 52
Go 3,904
Maven 6,602
npm 6,308
NuGet 967
pip 5,167
Pub 13
RubyGems 1,062
Rust 1,374
Swift 54

Unreviewed advisories

All unreviewed 304,499

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

115,218 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Authentication Bypass Using an Alternate Path or Channel vulnerability in ZAYTECH Smart Online... High Unreviewed

CVE-2026-42745 was published May 27, 2026

Insertion of Sensitive Information Into Sent Data vulnerability in ZAYTECH Smart Online Order for... High Unreviewed

CVE-2026-42746 was published May 27, 2026

Authentication Bypass Using an Alternate Path or Channel vulnerability in Themeisle Disable... High Unreviewed

CVE-2026-42749 was published May 27, 2026

Missing Authorization vulnerability in WC Lovers WCFM Membership wc-multivendor-membership allows... High Unreviewed

CVE-2026-42753 was published May 27, 2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2026-42754 was published May 27, 2026

Authentication Bypass Using an Alternate Path or Channel vulnerability in revmakx Backup and... High Unreviewed

CVE-2026-42760 was published May 27, 2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2026-42759 was published May 27, 2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2026-42762 was published May 27, 2026

A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate... High Unreviewed

CVE-2026-3012 was published May 27, 2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2026-42728 was published May 27, 2026

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2026-42730 was published May 27, 2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2026-42733 was published May 27, 2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2026-42729 was published May 27, 2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2026-42738 was published May 27, 2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2026-42734 was published May 27, 2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2026-42739 was published May 27, 2026

Authentication Bypass Using an Alternate Path or Channel vulnerability in Iqonic Design KiviCare... High Unreviewed

CVE-2026-42735 was published May 27, 2026

Authorization Bypass Through User-Controlled Key vulnerability in wordplus BP Better Messages bp... High Unreviewed

CVE-2026-42736 was published May 27, 2026

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2026-42737 was published May 27, 2026

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40847 was published May 27, 2026

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40846 was published May 27, 2026

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40845 was published May 27, 2026

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40849 was published May 27, 2026

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40844 was published May 27, 2026

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40850 was published May 27, 2026

Previous 1…3…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

115,218 advisories