Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
70
GitHub Actions
52
Go
3,904
Maven
5,000+
npm
5,000+
NuGet
967
pip
5,000+
Pub
13
RubyGems
1,062
Rust
1,374
Swift
54
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

115,218 advisories

Loading
The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for... High Unreviewed
CVE-2026-7797 was published May 28, 2026
The SlimStat Analytics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... High Unreviewed
CVE-2026-7634 was published May 28, 2026
A flaw was found in KubeVirt's virt-exportserver component. An attacker with specific namespace... High Unreviewed
CVE-2026-9804 was published May 28, 2026
The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to unauthenticated privilege... High Unreviewed
CVE-2026-6226 was published May 28, 2026
The GutenBee – Gutenberg Blocks plugin for WordPress is vulnerable to Arbitrary File Upload in... High Unreviewed
CVE-2026-9227 was published May 28, 2026
The HT Contact Form – Drag & Drop Form Builder for WordPress plugin for WordPress is vulnerable... High Unreviewed
CVE-2026-7052 was published May 28, 2026
The WP Contact Form 7 DB Handler plugin for WordPress is vulnerable to Cross-Site Request Forgery... High Unreviewed
CVE-2026-6455 was published May 28, 2026
A command injection vulnerability was discovered in the `rpmuncompress` utility of RPM. When... High Unreviewed
CVE-2026-44604 was published May 28, 2026
A flaw was found in the X.Org X server's XKB key types request validation. A local attacker could... High Unreviewed
CVE-2026-34003 was published Apr 23, 2026
A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC... High Unreviewed
CVE-2026-34001 was published Apr 23, 2026
A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the... High Unreviewed
CVE-2026-33999 was published Apr 23, 2026
The Crawlomatic Multipage Scraper Post Generator plugin for WordPress is vulnerable to Remote... High Unreviewed
CVE-2026-9009 was published May 28, 2026
The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to authorization bypass in... High Unreviewed
CVE-2026-7802 was published May 28, 2026
A flaw was found in Keycloak's Fine-Grained Admin Permissions (FGAPv2) feature. An administrator... High Unreviewed
CVE-2026-9795 was published May 28, 2026
A vulnerability allowing an authenticated user with the Backup Administrator role to write... High Unreviewed
CVE-2026-32997 was published May 28, 2026
The Login No Captcha reCAPTCHA plugin for WordPress is vulnerable to Stored Cross-Site Scripting... High Unreviewed
CVE-2026-2374 was published May 28, 2026
This vulnerability in Veeam Agent for Microsoft Windows allows for Local Privilege Escalation. High Unreviewed
CVE-2026-32996 was published May 28, 2026
A flaw was found in Cockpit. This vulnerability allows a remote attacker to achieve arbitrary... High Unreviewed
CVE-2026-4802 was published May 11, 2026
The Rocket.Chat DDP method autoTranslate.translateMessage in versions <8.5.0, <8.4.2, <8.3.4, <8... High Unreviewed
CVE-2026-32995 was published May 28, 2026
A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR... High Unreviewed
CVE-2026-4424 was published Mar 19, 2026
A Local Privilege Escalation (LPE) vulnerability affects Acer NitroSense software versions prior... High Unreviewed
CVE-2026-9789 was published May 28, 2026
A flaw was found in Red Hat Quay's container image upload process. An authenticated user with... High Unreviewed
CVE-2026-32589 was published Apr 8, 2026
A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of... High Unreviewed
CVE-2026-48864 was published May 26, 2026
A flaw was found in Red Hat Quay's handling of resumable container image layer uploads. The... High Unreviewed
CVE-2026-32590 was published Apr 8, 2026
Out-of-bounds write vulnerability in Samsung Open Source Escargot allows Overflow Buffers. This... High Unreviewed
CVE-2026-8915 was published May 28, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database