GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 31,043
Composer 5,887
Erlang 70
GitHub Actions 52
Go 3,904
Maven 6,602
npm 6,308
NuGet 967
pip 5,167
Pub 13
RubyGems 1,062
Rust 1,374
Swift 54

Unreviewed advisories

All unreviewed 304,499

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

335,542 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Visualizer: Tables and Charts Manager for WordPress plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2026-8689 was published May 28, 2026

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9 before 18.10.7,... Moderate Unreviewed

CVE-2026-9807 was published May 28, 2026

A flaw was found in KubeVirt's virt-exportserver component. An attacker with specific namespace... High Unreviewed

CVE-2026-9804 was published May 28, 2026

The PDF Embedder plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed

CVE-2026-7526 was published May 28, 2026

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2026-7048 was published May 28, 2026

The Equalize Digital Accessibility Checker – WCAG, ADA, EAA and Section 508 compliance plugin for... Moderate Unreviewed

CVE-2026-9015 was published May 28, 2026

The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for... Moderate Unreviewed

CVE-2026-6937 was published May 28, 2026

The Eupago Gateway For Woocommerce WordPress plugin before 4.7.2 does not properly restrict... Unknown Unreviewed

CVE-2026-7862 was published May 28, 2026

The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for... High Unreviewed

CVE-2026-7797 was published May 28, 2026

The 3D Viewer – 3D Model Viewer – Augmented Reality – Virtual Try On plugin for WordPress is... Moderate Unreviewed

CVE-2026-8682 was published May 28, 2026

The SlimStat Analytics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... High Unreviewed

CVE-2026-7634 was published May 28, 2026

The SMTP2GO for WordPress – Email Made Easy plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2026-7621 was published May 28, 2026

The Shariff Wrapper plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2026-4334 was published May 28, 2026

A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers... Critical Unreviewed

CVE-2026-4408 was published May 28, 2026

The PeachPay — Payments & Express Checkout for WooCommerce (supports Stripe, PayPal, Square,... Moderate Unreviewed

CVE-2026-9618 was published May 28, 2026

The Easy Updates Manager plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via... Moderate Unreviewed

CVE-2026-7660 was published May 28, 2026

The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to unauthenticated privilege... High Unreviewed

CVE-2026-6226 was published May 28, 2026

The Geo Mashup plugin for WordPress is vulnerable to authorization bypass in all versions up to,... Moderate Unreviewed

CVE-2026-7552 was published May 28, 2026

The GutenBee – Gutenberg Blocks plugin for WordPress is vulnerable to Arbitrary File Upload in... High Unreviewed

CVE-2026-9227 was published May 28, 2026

The User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction,... Moderate Unreviewed

CVE-2026-7651 was published May 28, 2026

A stored cross-site scripting (XSS) vulnerability exists in the notification panel of CTI... Moderate Unreviewed

CVE-2026-9806 was published May 28, 2026

Cross Site Scripting vulnerability in Follet School Solutions Destiny before v22.0.1 AU1 allows a... Moderate Unreviewed

CVE-2024-47097 was published May 28, 2026

Cross Site Scripting vulnerability in Follet School Solutions Destiny before v22.0.1 AU1 allows a... Moderate Unreviewed

CVE-2024-47096 was published May 28, 2026

The a3 Lazy Load plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all... Moderate Unreviewed

CVE-2026-6427 was published May 28, 2026

The HT Contact Form – Drag & Drop Form Builder for WordPress plugin for WordPress is vulnerable... High Unreviewed

CVE-2026-7052 was published May 28, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

335,542 advisories