GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 31,043
Composer 5,887
Erlang 70
GitHub Actions 52
Go 3,904
Maven 6,602
npm 6,308
NuGet 967
pip 5,167
Pub 13
RubyGems 1,062
Rust 1,374
Swift 54

Unreviewed advisories

All unreviewed 304,472

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

115,210 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Crawlomatic Multipage Scraper Post Generator plugin for WordPress is vulnerable to Remote... High Unreviewed

CVE-2026-9009 was published May 28, 2026

A flaw was found in Keycloak's Fine-Grained Admin Permissions (FGAPv2) feature. An administrator... High Unreviewed

CVE-2026-9795 was published May 28, 2026

The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to authorization bypass in... High Unreviewed

CVE-2026-7802 was published May 28, 2026

This vulnerability in Veeam Agent for Microsoft Windows allows for Local Privilege Escalation. High Unreviewed

CVE-2026-32996 was published May 28, 2026

The Rocket.Chat DDP method autoTranslate.translateMessage in versions <8.5.0, <8.4.2, <8.3.4, <8... High Unreviewed

CVE-2026-32995 was published May 28, 2026

A vulnerability allowing an authenticated user with the Backup Administrator role to write... High Unreviewed

CVE-2026-32997 was published May 28, 2026

The Login No Captcha reCAPTCHA plugin for WordPress is vulnerable to Stored Cross-Site Scripting... High Unreviewed

CVE-2026-2374 was published May 28, 2026

A Local Privilege Escalation (LPE) vulnerability affects Acer NitroSense software versions prior... High Unreviewed

CVE-2026-9789 was published May 28, 2026

Out-of-bounds write vulnerability in Samsung Open Source Escargot allows Overflow Buffers. This... High Unreviewed

CVE-2026-8915 was published May 28, 2026

Tanium addressed an unauthorized code execution vulnerability in Connect. High Unreviewed

CVE-2026-9208 was published May 28, 2026

When processing a request with a URL path starting with /status or /sysinfo, WOSHttpStatusModule... High Unreviewed

CVE-2026-8359 was published May 27, 2026

Function calls to WOSCommonUtil.dll!WOSSysInfoGetDeviceInterface() in various DLLs (i.e.,... High Unreviewed

CVE-2026-8360 was published May 27, 2026

A path traversal vulnerability exists in WOSDefaultHttpModule.dll when processing a URL path... High Unreviewed

CVE-2026-8361 was published May 27, 2026

GitLab has remediated an issue in GitLab EE affecting all versions from 18.8 before 18.10.7, 18... High Unreviewed

CVE-2026-4868 was published May 27, 2026

An authenticated command injection vulnerability exists in the Archer BE450 v1 and BE7200 v1... High Unreviewed

CVE-2026-5509 was published May 27, 2026

Command injection in Raynet rvia version 12.6.4392.49-amd64.deb allows adversaries to execute... High Unreviewed

CVE-2026-38945 was published May 27, 2026

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2026-49046 was published May 27, 2026

Mattermost Plugins versions <=1.1.5 fail to sanitize filenames received from federated peers... High Unreviewed

CVE-2026-6957 was published May 27, 2026

Agent Zero before version 1.15 contains a path traversal vulnerability that allows... High Unreviewed

CVE-2026-47118 was published May 27, 2026

Gradio before version 6.15.0 contains a cookie injection vulnerability that allows remote... High Unreviewed

CVE-2026-48545 was published May 27, 2026

Taipy 4.1.1, fixed in commit 129fd40, contains a path traversal vulnerability in the... High Unreviewed

CVE-2026-48544 was published May 27, 2026

Jenkins Email Extension Plugin 1933.v45cec755423f and earlier allows inlining images as `base64`... High Unreviewed

CVE-2026-48920 was published May 27, 2026

Jenkins Credentials Binding Plugin 720.v3f6decef43ea_ and earlier does not properly sanitize file... High Unreviewed

CVE-2026-48922 was published May 27, 2026

Jenkins Pipeline: Groovy Libraries Plugin 797.v90ea_a_9b_e45a_0 and earlier does not prohibit... High Unreviewed

CVE-2026-48921 was published May 27, 2026

IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed... High Unreviewed

CVE-2026-8180 was published May 27, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

115,210 advisories