Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
61
GitHub Actions
50
Go
3,821
Maven
5,000+
npm
5,000+
NuGet
939
pip
5,000+
Pub
13
RubyGems
1,059
Rust
1,357
Swift
54
Unreviewed advisories
All unreviewed
5,000+

158,245 advisories

Loading
When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, libcurl... Moderate Unreviewed
CVE-2026-6429 was published May 14, 2026
Fleet: IP spoofing allows bypassing API rate limiting Moderate
CVE-2026-46356 was published for github.com/fleetdm/fleet/v4 (Go) May 14, 2026
Fleet vulnerable to OS command injection in software packages Moderate
CVE-2026-26191 was published for github.com/fleetdm/fleet/v4 (Go) May 14, 2026
Fleet has a rate limiting bypass via untrusted client IP headers Moderate
CVE-2026-24000 was published for github.com/fleetdm/fleet/v4 (Go) May 14, 2026
Strapi Upload Plugin MIME Validation Bypass via Content API Moderate
CVE-2026-22707 was published for @strapi/upload (npm) May 14, 2026
kaminuma Credited to kaminuma and arkmarta arkmarta arkmarta
Uncontrolled Recursion vulnerability in Apache Commons. When processing an untrusted... Moderate Unreviewed
CVE-2026-45205 was published May 14, 2026
An integer overflow vulnerability in the simdjson document-builder API allows incorrect buffer... Moderate Unreviewed
CVE-2026-8295 was published May 14, 2026
The CC Child Pages plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2026-6174 was published May 14, 2026
The User Registration & Membership plugin for WordPress is vulnerable to Missing Authorization in... Moderate Unreviewed
CVE-2026-6145 was published May 14, 2026
The MW WP Form plugin for WordPress is vulnerable to Information Exposure in all versions up to,... Moderate Unreviewed
CVE-2026-6206 was published May 14, 2026
The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2026-6504 was published May 14, 2026
The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2026-3694 was published May 14, 2026
The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress... Moderate Unreviewed
CVE-2026-5193 was published May 14, 2026
The LatePoint plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... Moderate Unreviewed
CVE-2026-5365 was published May 14, 2026
The Media Sync plugin for WordPress is vulnerable to Path Traversal in all versions up to, and... Moderate Unreviewed
CVE-2026-6670 was published May 14, 2026
The Meta Field Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2026-6252 was published May 14, 2026
The Taskbuilder – Project Management & Task Management Tool With Kanban Board plugin for... Moderate Unreviewed
CVE-2026-6225 was published May 14, 2026
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.11 before 18.11.3... Moderate Unreviewed
CVE-2026-6335 was published May 14, 2026
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.1 before 18.9.7, 18... Moderate Unreviewed
CVE-2026-8144 was published May 14, 2026
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.3 before 18.9.7, 18... Moderate Unreviewed
CVE-2026-8280 was published May 14, 2026
The WP Encryption – One Click Free SSL Certificate & SSL / HTTPS Redirect, Security & SSL Scan... Moderate Unreviewed
CVE-2026-3829 was published May 14, 2026
The The Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu,... Moderate Unreviewed
CVE-2026-5243 was published May 14, 2026
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9.1 before 18.9.7,... Moderate Unreviewed
CVE-2026-4524 was published May 14, 2026
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.9.7,... Moderate Unreviewed
CVE-2026-4527 was published May 14, 2026
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.0 before 18.9.7, 18... Moderate Unreviewed
CVE-2026-1322 was published May 14, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database