Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
86
GitHub Actions
54
Go
4,175
Maven
5,000+
npm
5,000+
NuGet
1,019
pip
5,000+
Pub
13
RubyGems
1,102
Rust
1,421
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

394 advisories

Loading
When NGINX Plus or NGINX Open Source is configured as the data plane for NGINX Gateway Fabric, an... High Unreviewed
CVE-2026-50107 was published Jun 17, 2026
A security flaw has been discovered in Ruijie EG105G-P 2.340. The impacted element is the... High Unreviewed
CVE-2026-12197 was published Jun 15, 2026
A security vulnerability has been detected in GL.iNet GL-MT3000 up to 4.4.5. Affected by this... High Unreviewed
CVE-2026-12187 was published Jun 15, 2026
A weakness has been identified in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function... High Unreviewed
CVE-2026-12186 was published Jun 14, 2026
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft... High Unreviewed
CVE-2026-47634 was published Jun 9, 2026
Improper neutralization of special elements in output used by a downstream component ('injection'... High Unreviewed
CVE-2026-42835 was published Jun 9, 2026
A YAML injection vulnerability exists in the Windows.Collectors.Remapping artifact of Rapid7... High Unreviewed
CVE-2026-8795 was published Jun 9, 2026
IBM i Access Family 1.1.5.0 through 1.1.9.12 IBM i Access Client Solutions (ACS) is vulnerable to... High Unreviewed
CVE-2026-7770 was published Jun 1, 2026
Improper neutralization of special elements in output used by a downstream component ('injection'... High Unreviewed
CVE-2026-33833 was published May 12, 2026
Improper neutralization of special elements in output used by a downstream component ('injection'... High Unreviewed
CVE-2026-26164 was published May 8, 2026
A weakness has been identified in EFM ipTIME C200 up to 1.092. This vulnerability affects the... High Unreviewed
CVE-2026-7833 was published May 5, 2026
A vulnerability was detected in Totolink NR1800X 9.1.0u.6279_B20210910. This affects the function... High Unreviewed
CVE-2026-7548 was published May 1, 2026
A vulnerability was determined in Tenda HG3 2.0. This vulnerability affects the function... High Unreviewed
CVE-2026-7160 was published Apr 28, 2026
A security vulnerability has been detected in tufantunc ssh-mcp up to 1.5.0. The affected element... High Unreviewed
CVE-2026-7039 was published Apr 26, 2026
The login limit is not enforced on the SFTP service of Fortra's GoAnywhere MFT prior to 7.10.0 if... High Unreviewed
CVE-2026-0972 was published Apr 21, 2026
A flaw has been found in Wavlink WL-WN578W2 221110. Impacted is the function Delete_Mac_list... High Unreviewed
CVE-2026-4164 was published Mar 16, 2026
A vulnerability was detected in Wavlink WL-WN579A3 220323. This issue affects the function... High Unreviewed
CVE-2026-4163 was published Mar 16, 2026
A vulnerability was determined in Wavlink WL-NU516U1 V240425. This affects the function... High Unreviewed
CVE-2026-3612 was published Mar 6, 2026
The Cart All In One For WooCommerce plugin for WordPress is vulnerable to Code Injection in all... High Unreviewed
CVE-2026-2019 was published Feb 18, 2026
A flaw has been found in Wavlink WL-NU516U1 up to 20251208. The affected element is the function... High Unreviewed
CVE-2026-2615 was published Feb 17, 2026
A weakness has been identified in UTT 进取 521G 3.1.1-190816. Affected by this issue is the... High Unreviewed
CVE-2026-2182 was published Feb 8, 2026
A vulnerability was determined in UTT HiPER 810 1.7.4-141218. The impacted element is the... High Unreviewed
CVE-2026-2118 was published Feb 8, 2026
A security vulnerability has been detected in D-Link DWR-M921 1.1.50. Affected is the function... High Unreviewed
CVE-2026-2085 was published Feb 7, 2026
A vulnerability has been found in UTT HiPER 810 1.7.4-141218. This issue affects the function... High Unreviewed
CVE-2026-2080 was published Feb 7, 2026
Enhancesoft osTicket versions up to and including 1.18.2 contain an arbitrary file read... High Unreviewed
CVE-2026-22200 was published Jan 12, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database