GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 31,043
Composer 5,887
Erlang 70
GitHub Actions 52
Go 3,904
Maven 6,602
npm 6,308
NuGet 967
pip 5,167
Pub 13
RubyGems 1,062
Rust 1,374
Swift 54

Unreviewed advisories

All unreviewed 304,472

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

159,159 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

IBM App Connect Enterprise 13.0.1.0 through 13.0.7.0 stores potentially sensitive information in... Moderate Unreviewed

CVE-2026-5515 was published May 27, 2026

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to a denial of service... Moderate Unreviewed

CVE-2026-6053 was published May 27, 2026

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to a denial of service... Moderate Unreviewed

CVE-2026-6051 was published May 27, 2026

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to running out of memory... Moderate Unreviewed

CVE-2026-6052 was published May 27, 2026

IBM WebSphere Application Server - Liberty 19.0.0.7 through 26.0.0.5 and IBM WebSphere... Moderate Unreviewed

CVE-2026-4410 was published May 27, 2026

IBM Cloud APM, Base Private 8.1.4 and IBM Cloud APM, Advanced Private 8.1.4 IBM Db2 for Linux,... Moderate Unreviewed

CVE-2026-3676 was published May 27, 2026

A flaw was found in Samba’s vfs_worm module. The module is intended to provide write-once, read... Moderate Unreviewed

CVE-2026-2340 was published May 27, 2026

IBM MQ Operator SC2: v3.2.0 through 3.2.23CD: v3.3.0, v3.4.0, v3.4.1, v3.5.0, v3.5.1 - v3.5.3,... Moderate Unreviewed

CVE-2026-2607 was published May 27, 2026

libusb before version 1.0.30 contains a NULL pointer dereference vulnerability that allows... Moderate Unreviewed

CVE-2026-23679 was published May 27, 2026

IBM Cognos Analytics 11.2.0, 11.2.4, 12.0, and 12.1.0 and IBM Cognos Transformer 11.2.4, 12.0,... Moderate Unreviewed

CVE-2025-3633 was published May 27, 2026

IBM SDI 7.2.0.0 through 7.2.0.14 and IBM Security Directory Integrator 10.0.0.0 through 10.0.0.2... Moderate Unreviewed

CVE-2024-28765 was published May 27, 2026

IBM Operations Analytics - Log Analysis 1.3.5.0, 1.3.5.1, 1.3.5.2, 1.3.5.3, 1.3.6.0, 1.3.6.1, 1.3... Moderate Unreviewed

CVE-2024-40684 was published May 27, 2026

A flaw was found in Keycloak, an open-source identity and access management solution. When a... Moderate Unreviewed

CVE-2026-9689 was published May 27, 2026

Improper Validation of Specified Quantity in Input vulnerability in Ads by WPQuads Ads by WPQuads... Moderate Unreviewed

CVE-2026-42744 was published May 27, 2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2026-42751 was published May 27, 2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2026-42750 was published May 27, 2026

The myLinksDump plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2026-2288 was published May 27, 2026

The rexCrawler plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin... Moderate Unreviewed

CVE-2026-2280 was published May 27, 2026

The MinhNhut Link Gateway plugin for WordPress is vulnerable to Reflected Cross-Site Scripting... Moderate Unreviewed

CVE-2026-3349 was published May 27, 2026

The MinhNhut Link Gateway plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2026-3348 was published May 27, 2026

Missing Authorization vulnerability in Strategy11 Team AWP Classifieds another-wordpress... Moderate Unreviewed

CVE-2026-42726 was published May 27, 2026

Authorization Bypass Through User-Controlled Key vulnerability in WP Wham Checkout Files Upload... Moderate Unreviewed

CVE-2026-42725 was published May 27, 2026

Improper Validation of Specified Quantity in Input vulnerability in Ads by WPQuads Ads by WPQuads... Moderate Unreviewed

CVE-2026-42732 was published May 27, 2026

The Xpro Elementor Addons - Pro plugin for WordPress is vulnerable to Arbitrary File Reading in... Moderate Unreviewed

CVE-2025-0898 was published May 27, 2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2026-48968 was published May 27, 2026

Previous 1…4…400 Next

Previous 1 2 3 4 5 6 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

159,159 advisories