Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
70
GitHub Actions
52
Go
3,904
Maven
5,000+
npm
5,000+
NuGet
967
pip
5,000+
Pub
13
RubyGems
1,062
Rust
1,374
Swift
54
Unreviewed advisories
All unreviewed
5,000+

17,156 advisories

Loading
The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2026-7048 was published May 28, 2026
The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for... High Unreviewed
CVE-2026-7797 was published May 28, 2026
Symfony Vulnerable to SQL Injection in PdoAdapter::doClear() via Unsanitized $prefix Moderate
CVE-2026-45073 was published for symfony/cache (Composer) May 27, 2026
FORIMOC Credited to FORIMOC and nicolas-grekas nicolas-grekas nicolas-grekas
Langroid has Prompt to SQL Injection, Leading to RCE Critical
CVE-2026-25879 was published for langroid (pip) May 27, 2026
Ka7arotto Credited to Ka7arotto
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2026-49046 was published May 27, 2026
PostgreSQL Anonymizer contains a vulnerability that allows a user to gain superuser privileges by... Moderate Unreviewed
CVE-2026-9617 was published May 27, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2026-42740 was published May 27, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2026-42761 was published May 27, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2026-42747 was published May 27, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2026-42755 was published May 27, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2026-42727 was published May 27, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2026-42730 was published May 27, 2026
An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed
CVE-2026-40849 was published May 27, 2026
An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed
CVE-2026-40850 was published May 27, 2026
An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed
CVE-2026-40848 was published May 27, 2026
An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed
CVE-2026-40847 was published May 27, 2026
An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed
CVE-2026-40846 was published May 27, 2026
An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed
CVE-2026-40845 was published May 27, 2026
An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed
CVE-2026-40844 was published May 27, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in the... Critical Unreviewed
CVE-2026-8054 was published May 27, 2026
A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed
CVE-2026-40830 was published May 27, 2026
An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed
CVE-2026-40833 was published May 27, 2026
An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed
CVE-2026-40834 was published May 27, 2026
An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed
CVE-2026-40836 was published May 27, 2026
An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed
CVE-2026-40831 was published May 27, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database