Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
70
GitHub Actions
52
Go
3,904
Maven
5,000+
npm
5,000+
NuGet
967
pip
5,000+
Pub
13
RubyGems
1,062
Rust
1,374
Swift
54
Unreviewed advisories
All unreviewed
5,000+

159,178 advisories

Loading
In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2026-20413 was published Feb 2, 2026
In imgsys, there is a possible memory corruption due to improper locking. This could lead to... Moderate Unreviewed
CVE-2026-20415 was published Feb 2, 2026
The Five Star Restaurant Reservations WordPress plugin before 2.7.9 does not have CSRF checks in... Moderate Unreviewed
CVE-2026-0658 was published Feb 2, 2026
Cross-site scripting vulnerability exists in E-mail function of Cybozu Garoon 5.0.0 to 6.0.3,... Moderate Unreviewed
CVE-2026-20711 was published Feb 2, 2026
Cross-site scripting vulnerability exists in Message function of Cybozu Garoon 5.15.0 to 6.0.3,... Moderate Unreviewed
CVE-2026-22881 was published Feb 2, 2026
Improper input verification issue exists in Cybozu Garoon 5.0.0 to 6.0.3, which may lead to... Moderate Unreviewed
CVE-2026-22888 was published Feb 2, 2026
A vulnerability was identified in JeecgBoot 3.9.0. This vulnerability affects unknown code of the... Moderate Unreviewed
CVE-2026-1746 was published Feb 2, 2026
A vulnerability was determined in SourceCodester Medical Certificate Generator App 1.0. This... Moderate Unreviewed
CVE-2026-1745 was published Feb 2, 2026
A vulnerability was determined in EFM ipTIME A8004T 14.18.2. Affected is the function... Moderate Unreviewed
CVE-2026-1741 was published Feb 2, 2026
A vulnerability was identified in EFM ipTIME A8004T 14.18.2. Affected by this vulnerability is... Moderate Unreviewed
CVE-2026-1742 was published Feb 2, 2026
A vulnerability was found in D-Link DSL-6641K N8.TR069.20131126. Affected by this issue is the... Moderate Unreviewed
CVE-2026-1744 was published Feb 2, 2026
A vulnerability was found in EFM ipTIME A8004T 14.18.2. This impacts the function... Moderate Unreviewed
CVE-2026-1740 was published Feb 2, 2026
A vulnerability was detected in Open5GS up to 2.7.6. The affected element is the function... Moderate Unreviewed
CVE-2026-1737 was published Feb 2, 2026
A security vulnerability has been detected in Open5GS up to 2.7.6. Impacted is the function... Moderate Unreviewed
CVE-2026-1736 was published Feb 2, 2026
A flaw has been found in Open5GS up to 2.7.6. The impacted element is the function... Moderate Unreviewed
CVE-2026-1738 was published Feb 2, 2026
A vulnerability has been found in Free5GC pcf up to 1.4.1. This affects the function... Moderate Unreviewed
CVE-2026-1739 was published Feb 2, 2026
A security flaw has been discovered in Zhong Bang CRMEB up to 5.6.3. This vulnerability affects... Moderate Unreviewed
CVE-2026-1734 was published Feb 2, 2026
A vulnerability was identified in Zhong Bang CRMEB up to 5.6.3. This affects the function detail... Moderate Unreviewed
CVE-2026-1733 was published Feb 2, 2026
LobeHub Vulnerable to Improper Authorization in Presigned Upload Moderate
CVE-2026-23835 was published for @lobehub/chat (npm) Feb 1, 2026
uko3211 Credited to uko3211
WebMO Job Manager 20.0 contains a cross-site scripting vulnerability in search parameters that... Moderate Unreviewed
CVE-2021-47920 was published Feb 1, 2026
Stripe Green Downloads Wordpress Plugin 2.03 contains a persistent cross-site scripting... Moderate Unreviewed
CVE-2022-50797 was published Feb 1, 2026
WiFi File Transfer 1.0.8 contains a persistent cross-site scripting vulnerability that allows... Moderate Unreviewed
CVE-2022-50951 was published Feb 1, 2026
BootCommerce 3.2.1 contains persistent input validation vulnerabilities that allow remote... Moderate Unreviewed
CVE-2022-50941 was published Feb 1, 2026
QWE DL 2.0.1 mobile web application contains a persistent input validation vulnerability allowing... Moderate Unreviewed
CVE-2023-54343 was published Feb 1, 2026
Knap Advanced PHP Login 3.1.3 contains a persistent cross-site scripting vulnerability that... Moderate Unreviewed
CVE-2022-50940 was published Feb 1, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database