GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 29,574
Composer 5,678
Erlang 49
GitHub Actions 50
Go 3,630
Maven 6,443
npm 5,931
NuGet 928
pip 4,850
Pub 13
RubyGems 1,045
Rust 1,301
Swift 53

Unreviewed advisories

All unreviewed 300,298

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

113,650 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Paid Memberships Pro plugin for WordPress is vulnerable to unauthorized modification and... High Unreviewed

CVE-2026-4100 was published May 2, 2026

The Geo Mashup plugin for WordPress is vulnerable to Time-Based SQL Injection via the 'sort'... High Unreviewed

CVE-2026-4060 was published May 2, 2026

The Geo Mashup plugin for WordPress is vulnerable to Time-Based SQL Injection via the ... High Unreviewed

CVE-2026-4061 was published May 2, 2026

The Salon Booking System – Free Version plugin for WordPress is vulnerable to Arbitrary File Read... High Unreviewed

CVE-2026-6320 was published May 2, 2026

The Geo Mashup plugin for WordPress is vulnerable to Time-Based SQL Injection via the 'object_ids... High Unreviewed

CVE-2026-4062 was published May 2, 2026

CTMS developed by Sunnet has a SQL Injection vulnerability, allowing authenticated remote... High Unreviewed

CVE-2026-7489 was published May 2, 2026

CTMS and CPAS developed by Sunnet has an Arbitrary File Upload vulnerability, allowing privileged... High Unreviewed

CVE-2026-7490 was published May 2, 2026

School App developed by Zyosoft has an Insecure Direct Object Reference vulnerability, allowing... High Unreviewed

CVE-2026-7491 was published May 2, 2026

The ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup... High Unreviewed

CVE-2026-7649 was published May 2, 2026

A security vulnerability has been detected in TRENDnet TEW-821DAP 1.12B01. Impacted is the... High Unreviewed

CVE-2026-7607 was published May 2, 2026

The Brizy – Page Builder plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site... High Unreviewed

CVE-2026-5324 was published May 2, 2026

The Widget Options – Advanced Conditional Visibility for Gutenberg Blocks & Classic Widgets... High Unreviewed

CVE-2026-2052 was published May 2, 2026

The Royal Elementor Addons plugin for WordPress is vulnerable to Server-Side Request Forgery in... High Unreviewed

CVE-2026-6229 was published May 2, 2026

The Gravity Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Consent... High Unreviewed

CVE-2026-5113 was published May 2, 2026

The WP Mail Gateway plugin for WordPress is vulnerable to unauthorized access due to a missing... High Unreviewed

CVE-2026-6963 was published May 2, 2026

The Gravity Forms plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site... High Unreviewed

CVE-2026-5112 was published May 2, 2026

The Gravity Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions... High Unreviewed

CVE-2026-5109 was published May 2, 2026

The PixelYourSite Pro – Your smart PIXEL (TAG) Manager plugin for WordPress is vulnerable to... High Unreviewed

CVE-2026-7049 was published May 2, 2026

The Profile Builder Pro plugin for WordPress is vulnerable to PHP Object Injection in all... High Unreviewed

CVE-2026-7647 was published May 2, 2026

The Gravity Forms plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site... High Unreviewed

CVE-2026-5110 was published May 2, 2026

The Gravity Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions... High Unreviewed

CVE-2026-5111 was published May 2, 2026

The Import and export users and customers plugin for WordPress is vulnerable to Privilege... High Unreviewed

CVE-2026-7641 was published May 2, 2026

In Argo CD 3.2.0 before 3.2.11 and 3.3.0 before 3.3.9, ServerSideDiff allows reading cleartext... High Unreviewed

CVE-2026-43824 was published May 2, 2026

An issue in the component DirectIo64.sys of PassMark BurnInTest v11.0 Build 1011, OSForensics v11... High Unreviewed

CVE-2025-52347 was published May 1, 2026

flipperzero-firmware commit ad2a80 was discovered to contain a stack overflow in the "Main"... High Unreviewed

CVE-2026-30363 was published May 1, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

113,650 advisories