Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
40
Go
2,980
Maven
5,000+
npm
4,634
NuGet
788
pip
4,321
Pub
12
RubyGems
986
Rust
1,131
Swift
49
Unreviewed advisories
All unreviewed
5,000+

118,888 advisories

Loading
A security vulnerability has been detected in Wavlink WL-NU516U1 up to 130/260. This affects the... High Unreviewed
CVE-2026-2566 was published Feb 16, 2026
A vulnerability was detected in Wavlink WL-NU516U1 20251208. This vulnerability affects the... High Unreviewed
CVE-2026-2567 was published Feb 16, 2026
SmarterTools SmarterMail before 9526 allows XSS via MAPI requests. High Unreviewed
CVE-2026-26930 was published Feb 16, 2026
A Reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIAvpm Web Access from... High Unreviewed
CVE-2026-2101 was published Feb 16, 2026
An issue in Visual Studio Code Extensions Markdown Preview Enhanced v0.8.18 allows attackers to... High Unreviewed
CVE-2025-65716 was published Feb 16, 2026
An Out-Of-Bounds Read vulnerability affecting the EPRT file reading procedure in SOLIDWORKS... High Unreviewed
CVE-2026-1334 was published Feb 16, 2026
Mattermost Desktop App versions <=6.0 6.2.0 5.2.13.0 fail to validate help links which allows a... High Unreviewed
CVE-2026-1046 was published Feb 16, 2026
An Out-Of-Bounds Write vulnerability affecting the EPRT file reading procedure in SOLIDWORKS... High Unreviewed
CVE-2026-1335 was published Feb 16, 2026
A Use of Uninitialized Variable vulnerability affecting the EPRT file reading procedure in... High Unreviewed
CVE-2026-1333 was published Feb 16, 2026
Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7... High Unreviewed
CVE-2026-2447 was published Feb 16, 2026
Emails sent by pretix can utilize placeholders that will be filled with customer data. For... High Unreviewed
CVE-2026-2415 was published Feb 16, 2026
Emails sent by pretix can utilize placeholders that will be filled with customer data. For... High Unreviewed
CVE-2026-2452 was published Feb 16, 2026
Emails sent by pretix can utilize placeholders that will be filled with customer data. For... High Unreviewed
CVE-2026-2451 was published Feb 16, 2026
A vulnerability was found in EFM iptime A6004MX 14.18.2. Affected is the function... High Unreviewed
CVE-2026-2550 was published Feb 16, 2026
A weakness has been identified in Total VPN 0.5.29.0 on Windows. Affected by this vulnerability... High Unreviewed
CVE-2026-2542 was published Feb 16, 2026
A security flaw has been discovered in Flos Freeware Notepad2 4.2.22/4.2.23/4.2.24/4.2.25.... High Unreviewed
CVE-2026-2538 was published Feb 16, 2026
The RegistrationMagic WordPress plugin before 6.0.7.2 does not have proper capability checks,... High Unreviewed
CVE-2026-0929 was published Feb 16, 2026
eNet SMART HOME server 2.2.1 and 2.3.1 contains a missing authorization vulnerability in the... High Unreviewed
CVE-2026-26367 was published Feb 15, 2026
eNet SMART HOME server 2.2.1 and 2.3.1 contains a missing authorization vulnerability in the... High Unreviewed
CVE-2026-26368 was published Feb 15, 2026
A vulnerability was identified in Unidocs ezPDF DRM Reader and ezPDF Reader 2.0/3.0.0.4 on 32-bit... High Unreviewed
CVE-2026-2516 was published Feb 15, 2026
The Micca KE700 system contains flawed resynchronization logic and is vulnerable to replay... High Unreviewed
CVE-2026-2540 was published Feb 15, 2026
The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment... High Unreviewed
CVE-2025-32062 was published Feb 15, 2026
The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment... High Unreviewed
CVE-2025-32059 was published Feb 15, 2026
The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment... High Unreviewed
CVE-2025-32061 was published Feb 15, 2026
The Ecwid by Lightspeed Ecommerce Shopping Cart plugin for WordPress is vulnerable to Privilege... High Unreviewed
CVE-2026-1750 was published Feb 15, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database