GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 30,628
Composer 5,817
Erlang 61
GitHub Actions 50
Go 3,821
Maven 6,571
npm 6,204
NuGet 939
pip 5,090
Pub 13
RubyGems 1,059
Rust 1,357
Swift 54

Unreviewed advisories

All unreviewed 302,665

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

158,248 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

When Bidirectional Forwarding Detection (BFD) is configured in Static and Dynamic routing... Moderate Unreviewed

CVE-2026-34019 was published May 13, 2026

NXP moal.ko Wi-Fi driver 5.1.7.10 FW version from v17.92.1.p149.43 To v17.92.1.p149.157 was... Moderate Unreviewed

CVE-2025-29338 was published May 13, 2026

Stored cross-site scripting vulnerability exists in ELECOM wireless LAN access point devices. If... Moderate Unreviewed

CVE-2026-42948 was published May 13, 2026

ELECOM wireless LAN access point devices implement CSRF protection mechanism, but with inadequate... Moderate Unreviewed

CVE-2026-42961 was published May 13, 2026

ELECOM wireless LAN access point devices do not check if language parameter has an appropriate... Moderate Unreviewed

CVE-2026-42950 was published May 13, 2026

Buffer Overflow vulnerability in Ardupiot Copter Latest commit... Moderate Unreviewed

CVE-2024-51394 was published May 13, 2026

qihang-wms commit 75c15a was discovered to contain a SQL injection vulnerability via the... Moderate Unreviewed

CVE-2026-37429 was published May 13, 2026

qihang-wms commit 75c15a was discovered to contain a SQL injection vulnerability via the... Moderate Unreviewed

CVE-2026-37428 was published May 13, 2026

Buffer Overflow vulnerability in Ardupiot Copter Latest commit... Moderate Unreviewed

CVE-2024-51395 was published May 13, 2026

WOOF Products Filter for WooCommerce 1.2.3 contains a persistent cross-site scripting... Moderate Unreviewed

CVE-2020-37174 was published May 13, 2026

Easy2Pilot 7 contains a cross-site request forgery vulnerability that allows attackers to add... Moderate Unreviewed

CVE-2020-37217 was published May 13, 2026

WordPress Plugin ultimate-member 2.1.3 contains a local file inclusion vulnerability that allows... Moderate Unreviewed

CVE-2020-37169 was published May 13, 2026

Powie's WHOIS Domain Check 0.9.31 contains a persistent cross-site scripting vulnerability that... Moderate Unreviewed

CVE-2020-37225 was published May 13, 2026

Kuicms Php EE 2.0 contains a persistent cross-site scripting vulnerability that allows... Moderate Unreviewed

CVE-2020-37222 was published May 13, 2026

Improper Input Validation in the NAT64 translator in The OpenThread Authors OpenThread before... Moderate Unreviewed

CVE-2026-8369 was published May 13, 2026

Crypt::Argon2 versions from 0.017 before 0.031 for Perl perform a heap out-of-bounds read in... Moderate Unreviewed

CVE-2026-8463 was published May 13, 2026

Privilege escalation in the mk_mysql agent plugin on Windows in Checkmk <2.4.0p29, <2.3.0p47, and... Moderate Unreviewed

CVE-2024-47091 was published May 13, 2026

The newly introduced RecordUsage D-Bus method https://gitlab.freedesktop.org/pwithnall... Moderate Unreviewed

CVE-2026-44931 was published May 13, 2026

Improper privilege management in Samsung System Support Service prior to version 8.0.8.0 allows... Moderate Unreviewed

CVE-2026-21024 was published May 13, 2026

Incorrect authorization in the "submitted together" feature in Gerrit versions 2.12 and later... Moderate Unreviewed

CVE-2026-2725 was published May 13, 2026

csync2 uses insecure temporary directories when compiled with C99 or later, allowing for TOCTOU... Moderate Unreviewed

CVE-2026-41051 was published May 13, 2026

libcurl might in some circumstances reuse the wrong connection when asked to do an authenticated... Moderate Unreviewed

CVE-2026-5545 was published May 13, 2026

ELECOM wireless LAN access point devices use a hard-coded cryptographic key when creating backups... Moderate Unreviewed

CVE-2026-25107 was published May 13, 2026

Improper export of android application components in OmaCP prior to SMR May-2026 Release 1 allows... Moderate Unreviewed

CVE-2026-21020 was published May 13, 2026

Improper input validation in Routines prior to SMR May-2026 Release 1 allows physical attackers... Moderate Unreviewed

CVE-2026-21021 was published May 13, 2026

Previous 1…12…400 Next

Previous 1 2 … 10 11 12 13 14 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

158,248 advisories