Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
46
Go
3,270
Maven
5,000+
npm
5,000+
NuGet
867
pip
4,517
Pub
12
RubyGems
998
Rust
1,194
Swift
51
Unreviewed advisories
All unreviewed
5,000+

4,774 advisories

Loading
Missing Authorization vulnerability in Saad Iqbal WP EasyPay allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2026-32587 was published Mar 16, 2026
Missing Authorization vulnerability in Webnus Inc. Modern Events Calendar allows Exploiting... Moderate Unreviewed
CVE-2026-32583 was published Mar 16, 2026
Mattermost allows a removed team member to enumerate all public channels within a private team Moderate
CVE-2026-2458 was published for github.com/mattermost/mattermost-server (Go) Mar 16, 2026
Mattermost fails to filter invite IDs based on user permissions Moderate
CVE-2026-2463 was published for github.com/mattermost/mattermost-server (Go) Mar 16, 2026
The User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User... Moderate Unreviewed
CVE-2026-2233 was published Mar 16, 2026
The Thim Kit for Elementor – Pre-built Templates & Widgets for Elementor plugin for WordPress is... Moderate Unreviewed
CVE-2026-1870 was published Mar 16, 2026
The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2026-1948 was published Mar 16, 2026
Missing Authorization vulnerability in Really Simple Plugins Really Simple SSL really-simple-ssl... Moderate Unreviewed
CVE-2026-32461 was published Mar 13, 2026
Missing Authorization vulnerability in raratheme Lawyer Landing Page lawyer-landing-page allows... Moderate Unreviewed
CVE-2026-32487 was published Mar 13, 2026
Missing Authorization vulnerability in CyberChimps Responsive Blocks responsive-block-editor... Moderate Unreviewed
CVE-2026-32543 was published Mar 13, 2026
Missing Authorization vulnerability in wptravelengine Travel Booking travel-booking allows... Moderate Unreviewed
CVE-2026-32486 was published Mar 13, 2026
The Social Icons Widget & Block by WPZOOM plugin for WordPress is vulnerable to unauthorized data... Moderate Unreviewed
CVE-2026-4063 was published Mar 13, 2026
Missing Authorization vulnerability in Wombat Plugins Advanced Product Fields (Product Addons)... Moderate Unreviewed
CVE-2026-32457 was published Mar 13, 2026
Missing Authorization vulnerability in Agile Logix Post Timeline post-timeline allows Exploiting... Moderate Unreviewed
CVE-2026-32421 was published Mar 13, 2026
Missing Authorization vulnerability in Bowo Admin and Site Enhancements (ASE) admin-site... Moderate Unreviewed
CVE-2026-32423 was published Mar 13, 2026
Missing Authorization vulnerability in vowelweb VW Education Lite vw-education-lite allows... Moderate Unreviewed
CVE-2026-32427 was published Mar 13, 2026
Missing Authorization vulnerability in linknacional Payment Gateway Pix For GiveWP payment... Moderate Unreviewed
CVE-2026-32425 was published Mar 13, 2026
Missing Authorization vulnerability in Ays Pro Popup Like box ays-facebook-popup-likebox allows... Moderate Unreviewed
CVE-2026-32428 was published Mar 13, 2026
Missing Authorization vulnerability in codepeople WP Time Slots Booking Form wp-time-slots... Moderate Unreviewed
CVE-2026-32432 was published Mar 13, 2026
Missing Authorization vulnerability in vowelweb VW Portfolio vw-portfolio allows Exploiting... Moderate Unreviewed
CVE-2026-32437 was published Mar 13, 2026
Missing Authorization vulnerability in vowelweb VW Fitness vw-fitness allows Exploiting... Moderate Unreviewed
CVE-2026-32434 was published Mar 13, 2026
Missing Authorization vulnerability in vowelweb VW Photography vw-photography allows Exploiting... Moderate Unreviewed
CVE-2026-32436 was published Mar 13, 2026
Missing Authorization vulnerability in vowelweb VW Pet Shop vw-pet-shop allows Exploiting... Moderate Unreviewed
CVE-2026-32435 was published Mar 13, 2026
Missing Authorization vulnerability in WebGeniusLab BigHearts bighearts allows Exploiting... Moderate Unreviewed
CVE-2026-32439 was published Mar 13, 2026
Missing Authorization vulnerability in Ex-Themes WP Food wp-food allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2026-32440 was published Mar 13, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database