GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 31,212
Composer 5,909
Erlang 70
GitHub Actions 52
Go 3,948
Maven 6,604
npm 6,342
NuGet 969
pip 5,225
Pub 13
RubyGems 1,062
Rust 1,383
Swift 56

Unreviewed advisories

All unreviewed 305,454

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

337 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Inappropriate implementation in Tint in Google Chrome prior to 148.0.7778.216 allowed a remote... Critical Unreviewed

CVE-2026-9918 was published May 29, 2026

The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to Privilege Escalation... Critical Unreviewed

CVE-2026-8809 was published May 29, 2026

Vulnerability in the Oracle Payments product of Oracle E-Business Suite (component: File... Critical Unreviewed

CVE-2026-46817 was published May 28, 2026

Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite (component:... Critical Unreviewed

CVE-2026-46824 was published May 28, 2026

The Mennekes Amtron series (firmware versions ≤ 5.22.3) is vulnerable to privilege escalation. An... Critical Unreviewed

CVE-2026-8980 was published May 28, 2026

The Divi Form Builder plugin for WordPress is vulnerable to privilege escalation in versions up... Critical Unreviewed

CVE-2026-5118 was published May 21, 2026

The Easy Elements for Elementor – Addons & Website Templates plugin for WordPress is vulnerable... Critical Unreviewed

CVE-2026-7284 was published May 20, 2026

The LalanaChami Pharmacy Management System (commit 5c3d028) allows unauthenticated remote... Critical Unreviewed

CVE-2026-31070 was published May 19, 2026

The Mentoring plugin for WordPress is vulnerable to privilege escalation in all versions up to,... Critical Unreviewed

CVE-2025-13618 was published May 5, 2026

Improper access control in Doorman v0.1.0 and v1.0.2 allows any authenticated user to update... Critical Unreviewed

CVE-2026-30269 was published Apr 20, 2026

The Barcode Scanner (+Mobile App) – Inventory manager, Order fulfillment system, POS (Point of... Critical Unreviewed

CVE-2026-4880 was published Apr 16, 2026

An issue in mtrojnar Osslsigncode affected at v2.10 and before allows a remote attacker to... Critical Unreviewed

CVE-2025-70888 was published Mar 25, 2026

The Datalogics Ecommerce Delivery WordPress plugin before 2.6.60 exposes an unauthenticated REST... Critical Unreviewed

CVE-2026-2631 was published Mar 11, 2026

An issue in D-Link DIR-1253 MESH V1.6.1684 allows an attacker to escalate privileges via the etc... Critical Unreviewed

CVE-2025-29165 was published Mar 5, 2026

The IDC SFX2100 Satellite Receiver sets overly permissive file system permissions on the monitor... Critical Unreviewed

CVE-2026-29127 was published Mar 5, 2026

The User Registration & Membership – Custom Registration Form Builder, Custom Login Form, User... Critical Unreviewed

CVE-2026-1492 was published Mar 3, 2026

In __pkvm_init_vm of pkvm.c, there is a possible memory corruption due to a logic error in the... Critical Unreviewed

CVE-2026-0029 was published Mar 2, 2026

The Listee theme for WordPress is vulnerable to privilege escalation in all versions up to, and... Critical Unreviewed

CVE-2025-12981 was published Feb 27, 2026

Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 148 and... Critical Unreviewed

CVE-2026-2780 was published Feb 24, 2026

Privilege escalation in the Messaging System component. This vulnerability affects Firefox < 148,... Critical Unreviewed

CVE-2026-2777 was published Feb 24, 2026

Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 148 and... Critical Unreviewed

CVE-2026-2782 was published Feb 24, 2026

A broken access control vulnerability exists in Serv-U which when exploited, gives a malicious... Critical Unreviewed

CVE-2025-40538 was published Feb 24, 2026

An issue in Key Systems Inc Global Facilities Management Software v.20230721a allows a remote... Critical Unreviewed

CVE-2026-26722 was published Feb 20, 2026

An issue in edu Business Solutions Print Shop Pro WebDesk v.18.34 allows a remote attacker to... Critical Unreviewed

CVE-2026-26725 was published Feb 20, 2026

The s2Member plugin for WordPress is vulnerable to privilege escalation via account takeover in... Critical Unreviewed

CVE-2026-1994 was published Feb 19, 2026

Previous1…14 Next

Previous 1 2 3 4 5 … 13 14 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

337 advisories