GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 28,101
Composer 5,484
Erlang 47
GitHub Actions 48
Go 3,378
Maven 6,352
npm 5,450
NuGet 881
pip 4,573
Pub 13
RubyGems 1,013
Rust 1,205
Swift 51

Unreviewed advisories

All unreviewed 295,771

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

9,109 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Magic Import Document Extractor plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2025-15508 was published Feb 4, 2026

The Chapa Payment Gateway Plugin for WooCommerce plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed

CVE-2025-15482 was published Feb 4, 2026

HCL AION is affected by a Missing or Insecure HTTP Strict-Transport-Security (HSTS) Header... Low Unreviewed

CVE-2025-52631 was published Feb 3, 2026

GUnet OpenEclass 1.7.3 allows unauthenticated and authenticated users to access sensitive... Moderate Unreviewed

CVE-2020-37114 was published Feb 3, 2026

The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2026-1371 was published Feb 3, 2026

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in AKCE Software... High Unreviewed

CVE-2025-8590 was published Feb 3, 2026

The Spectra Gutenberg Blocks – Website Builder for the Block Editor plugin for WordPress is... Moderate Unreviewed

CVE-2026-0950 was published Feb 3, 2026

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation... Low Unreviewed

CVE-2025-61639 was published Feb 3, 2026

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation... Moderate Unreviewed

CVE-2025-6590 was published Feb 3, 2026

Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program... Low Unreviewed

CVE-2025-6593 was published Feb 3, 2026

The WP Adminify plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed

CVE-2026-1060 was published Jan 28, 2026

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ixray-team ixray-1.6... Low Unreviewed

CVE-2026-24870 was published Jan 27, 2026

An issue in continuous.software aangine v.2025.2 allows a remote attacker to obtain sensitive... High Unreviewed

CVE-2025-67274 was published Jan 26, 2026

A security flaw has been discovered in Beetel 777VR1 up to 01.00.09/01.00.09_55. This affects an... Low Unreviewed

CVE-2026-1407 was published Jan 26, 2026

The CubeWP – All-in-One Dynamic Content Framework plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-6461 was published Jan 25, 2026

The WP Directory Kit plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed

CVE-2025-13920 was published Jan 24, 2026

An information disclosure vulnerability exists in the /srvs/membersrv/getCashiers endpoint of the... High Unreviewed

CVE-2025-52026 was published Jan 23, 2026

ALGO 8180 IP Audio Alerter Web UI Inclusion of Authentication Cookie in Response Body Information... Moderate Unreviewed

CVE-2026-0789 was published Jan 23, 2026

Exposure of sensitive information to an unauthorized actor in Azure Data Explorer allows an... High Unreviewed

CVE-2026-21524 was published Jan 23, 2026

An issue in Atomberg Atomberg Erica Smart Fan Firmware Version: V1.0.36 allows an attacker to... High Unreviewed

CVE-2025-69822 was published Jan 22, 2026

Neo4j Enterprise edition versions prior to 2025.11.2 and 5.26.17 are vulnerable to a potential... Low Unreviewed

CVE-2025-12738 was published Jan 22, 2026

Vulnerability in the Oracle Life Sciences Central Designer product of Oracle Health Sciences... Moderate Unreviewed

CVE-2026-21974 was published Jan 21, 2026

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Kernel). The... Moderate Unreviewed

CVE-2026-21928 was published Jan 21, 2026

Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain (component: User and User... High Unreviewed

CVE-2026-21940 was published Jan 21, 2026

Insufficient policy enforcement in Network in Google Chrome prior to 144.0.7559.59 allowed an... Critical Unreviewed

CVE-2026-0905 was published Jan 20, 2026

Previous 1…5…365 Next

Previous 1 2 3 4 5 6 7 … 364 365 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

9,109 advisories