GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 31,043
Composer 5,887
Erlang 70
GitHub Actions 52
Go 3,904
Maven 6,602
npm 6,308
NuGet 967
pip 5,167
Pub 13
RubyGems 1,062
Rust 1,374
Swift 54

Unreviewed advisories

All unreviewed 304,499

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

115,218 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The WPCode - Insert Headers and Footers + Custom Code Snippets - WordPress Code Manager plugin... High Unreviewed

CVE-2026-8832 was published May 27, 2026

Uncontrolled search path element vulnerability in OpenSSL DLL component in Synology BeeDrive for... High Unreviewed

CVE-2023-52945 was published May 27, 2026

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40814 was published May 27, 2026

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40818 was published May 27, 2026

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40815 was published May 27, 2026

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40816 was published May 27, 2026

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40819 was published May 27, 2026

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40817 was published May 27, 2026

A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40825 was published May 27, 2026

A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40823 was published May 27, 2026

A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40824 was published May 27, 2026

The affiliate-toolkit plugin for WordPress is vulnerable to remote code execution in all versions... High Unreviewed

CVE-2026-6169 was published May 27, 2026

The HBook plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... High Unreviewed

CVE-2026-8143 was published May 27, 2026

The Web-based Management allows a remote low privileged Engineer user to install additional APPs... High Unreviewed

CVE-2025-41669 was published May 27, 2026

A local user with low privileges may be able to influence the behavior of a privileged system... High Unreviewed

CVE-2025-41670 was published May 27, 2026

The Query Shortcode plugin for WordPress is vulnerable to Local File Inclusion in all versions up... High Unreviewed

CVE-2026-9200 was published May 27, 2026

The Login with NEAR plugin for WordPress is vulnerable to Authentication Bypass in all versions... High Unreviewed

CVE-2026-8994 was published May 27, 2026

The LiteSpeed Cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the /wp... High Unreviewed

CVE-2026-3375 was published May 27, 2026

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40811 was published May 27, 2026

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40810 was published May 27, 2026

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40813 was published May 27, 2026

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-40812 was published May 27, 2026

The Firebase Support & Chat Management plugin for WordPress is vulnerable to privilege escalation... High Unreviewed

CVE-2026-8787 was published May 27, 2026

The EventPress WordPress theme before 22.2 does not sanitize or escape the 'id' parameter in the... High Unreviewed

CVE-2026-6268 was published May 27, 2026

Hitachi Vantara Pentaho Data Integration & Analytics versions before 10.2.0.7 and 11.0.0.0,... High Unreviewed

CVE-2026-2253 was published May 27, 2026

Previous 1…5…400 Next

Previous 1 2 3 4 5 6 7 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

115,218 advisories