Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
41
Go
3,026
Maven
5,000+
npm
4,763
NuGet
824
pip
4,366
Pub
12
RubyGems
987
Rust
1,143
Swift
50
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

139,279 advisories

Loading
In JetBrains TeamCity before 2025.11.3 missing authorization allowed project developers to add... Moderate Unreviewed
CVE-2026-28195 was published Feb 25, 2026
A vulnerability was found in feiyuchuixue sz-boot-parent up to 1.3.2-beta. Affected is an unknown... Moderate Unreviewed
CVE-2026-3185 was published Feb 25, 2026
A vulnerability was determined in feiyuchuixue sz-boot-parent up to 1.3.2-beta. Affected by this... Moderate Unreviewed
CVE-2026-3186 was published Feb 25, 2026
In JetBrains TeamCity before 2025.11.3 open redirect was possible in the React project creation flow Moderate Unreviewed
CVE-2026-28194 was published Feb 25, 2026
In affected version of Octopus Deploy it was possible to remove files and/or contents of files on... Moderate Unreviewed
CVE-2026-0704 was published Feb 25, 2026
A flaw was found in the udisks storage management daemon that allows unprivileged users to back... Moderate Unreviewed
CVE-2026-26104 was published Feb 25, 2026
The Secure Copy Content Protection and Content Locking plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2026-2367 was published Feb 25, 2026
A security flaw was identified in the Orchestrator Plugin of Red Hat Developer Hub (Backstage).... Moderate Unreviewed
CVE-2026-3118 was published Feb 25, 2026
The Post Duplicator plugin for WordPress is vulnerable to unauthorized arbitrary protected post... Moderate Unreviewed
CVE-2026-2301 was published Feb 25, 2026
The Disable Admin Notices – Hide Dashboard Notifications plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2026-2410 was published Feb 25, 2026
The WP Recipe Maker plugin for WordPress is vulnerable to unauthorized access of data due to a... Moderate Unreviewed
CVE-2025-14742 was published Feb 25, 2026
The Responsive Lightbox & Gallery plugin for WordPress is vulnerable to Server-Side Request... Moderate Unreviewed
CVE-2026-2479 was published Feb 25, 2026
A flaw has been found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management... Moderate Unreviewed
CVE-2026-3171 was published Feb 25, 2026
The Rise Blocks – A Complete Gutenberg Page Builder plugin for WordPress is vulnerable to Stored... Moderate Unreviewed
CVE-2026-1614 was published Feb 25, 2026
A vulnerability was detected in SourceCodester/Patrick Mvuma Patients Waiting Area Queue... Moderate Unreviewed
CVE-2026-3170 was published Feb 25, 2026
URLs containing percent-encoded slashes (`/` or `\`) can trick wcurl into saving the output file... Moderate Unreviewed
CVE-2025-11563 was published Feb 25, 2026
A vulnerability was detected in itsourcecode College Management System 1.0. This vulnerability... Moderate Unreviewed
CVE-2026-3151 was published Feb 25, 2026
A vulnerability was found in itsourcecode News Portal Project 1.0. This issue affects some... Moderate Unreviewed
CVE-2026-3164 was published Feb 25, 2026
A vulnerability has been found in itsourcecode Document Management System 1.0. Impacted is an... Moderate Unreviewed
CVE-2026-3153 was published Feb 25, 2026
A flaw has been found in itsourcecode College Management System 1.0. This issue affects some... Moderate Unreviewed
CVE-2026-3152 was published Feb 25, 2026
A vulnerability has been found in SourceCodester Website Link Extractor 1.0. This vulnerability... Moderate Unreviewed
CVE-2026-3163 was published Feb 25, 2026
A vulnerability was determined in SourceCodester Simple and Nice Shopping Cart Script 1.0. This... Moderate Unreviewed
CVE-2026-3148 was published Feb 25, 2026
A weakness has been identified in itsourcecode College Management System 1.0. Affected by this... Moderate Unreviewed
CVE-2026-3149 was published Feb 25, 2026
A security vulnerability has been detected in itsourcecode College Management System 1.0. This... Moderate Unreviewed
CVE-2026-3150 was published Feb 25, 2026
The SPIP jeux plugin versions prior to 4.1.1 contain a reflected cross-site scripting (XSS)... Moderate Unreviewed
CVE-2026-27746 was published Feb 25, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database