GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 30,937
Composer 5,855
Erlang 70
GitHub Actions 52
Go 3,894
Maven 6,588
npm 6,288
NuGet 963
pip 5,143
Pub 13
RubyGems 1,061
Rust 1,373
Swift 54

Unreviewed advisories

All unreviewed 303,299

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

26,132 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An attacker sending tcp, il, rudp, rudp, or gre packets with a length less than the header size... Critical Unreviewed

CVE-2026-9054 was published May 22, 2026

A malicious actor with access to the network could exploit an Improper Input Validation... Critical Unreviewed

CVE-2026-34910 was published May 22, 2026

A malicious actor with access to the network could exploit a Path Traversal vulnerability found... Critical Unreviewed

CVE-2026-34909 was published May 22, 2026

A malicious actor with access to the network and high privileges could exploit an Improper Input... Critical Unreviewed

CVE-2026-33000 was published May 22, 2026

A malicious actor with access to the network could exploit an Improper Access Control... Critical Unreviewed

CVE-2026-34908 was published May 22, 2026

The BookingPress Pro plugin for WordPress is vulnerable to arbitrary file uploads due to missing... Critical Unreviewed

CVE-2026-6960 was published May 22, 2026

Concrete CMS 9.5.0 and below fails to sanitize path traversal sequences in the... Critical Unreviewed

CVE-2026-8134 was published May 21, 2026

Open ISES Tickets before 3.44.2 contains hardcoded MySQL database connection credentials (host,... Critical Unreviewed

CVE-2026-48242 was published May 21, 2026

Open ISES Tickets before 3.44.2 contains hardcoded MySQL database credentials in loader.php (a... Critical Unreviewed

CVE-2026-48241 was published May 21, 2026

Deserialization of untrusted data in Apache Fory PyFory. PyFory's ReduceSerializer could bypass... Critical Unreviewed

CVE-2026-48207 was published May 21, 2026

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2026-39531 was published May 21, 2026

A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to... Critical Unreviewed

CVE-2025-71210 was published May 21, 2026

A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to... Critical Unreviewed

CVE-2025-71211 was published May 21, 2026

The Divi Form Builder plugin for WordPress is vulnerable to privilege escalation in versions up... Critical Unreviewed

CVE-2026-5118 was published May 21, 2026

Honeywell Control Network Module (CNM) contains command injection vulnerability in the web... Critical Unreviewed

CVE-2026-5433 was published May 21, 2026

A heap-based buffer overflow in the CNID daemon comm_rcv() function in Netatalk 2.0.0 through 4.4... Critical Unreviewed

CVE-2026-44050 was published May 21, 2026

The Avada Builder (fusion-builder) plugin for WordPress is vulnerable to Unauthenticated Remote... Critical Unreviewed

CVE-2026-6279 was published May 21, 2026

LiteSpeed User-End cPanel Plugin before 2.4.5 allows privilege escalation (possibly to root), as... Critical Unreviewed

CVE-2026-48172 was published May 21, 2026

A missing authentication vulnerability exists in the Altium 365 SearchService. A legacy SOAP... Critical Unreviewed

CVE-2026-9152 was published May 21, 2026

Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts. ... Critical Unreviewed

CVE-2026-47372 was published May 21, 2026

A path traversal vulnerability exists in the Altium Enterprise Server Viewer StorageController... Critical Unreviewed

CVE-2026-9129 was published May 20, 2026

Taiko AG1000-01A SMS Alert Gateway Rev 7.3 and Rev 8 contains a hard-coded credential... Critical Unreviewed

CVE-2026-9139 was published May 20, 2026

Taiko AG1000-01A SMS Alert Gateway Rev 7.3 and Rev 8 contains an authentication bypass... Critical Unreviewed

CVE-2026-9141 was published May 20, 2026

A potential security vulnerability has been identified in the HP Linux Imaging and Printing... Critical Unreviewed

CVE-2026-8631 was published May 20, 2026

Unrestricted Upload of File with Dangerous Type vulnerability in WP Swings Gift Cards For... Critical Unreviewed

CVE-2026-45444 was published May 20, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

26,132 advisories