GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 28,553
Composer 5,554
Erlang 49
GitHub Actions 49
Go 3,426
Maven 6,365
npm 5,645
NuGet 882
pip 4,670
Pub 13
RubyGems 1,029
Rust 1,212
Swift 53

Unreviewed advisories

All unreviewed 296,685

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

32,340 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Gravity Forms plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2026-4406 was published Apr 8, 2026

Improper neutralization of input during web page generation ('cross-site scripting')... Moderate Unreviewed

CVE-2026-39936 was published Apr 8, 2026

The Gravity Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2026-4394 was published Apr 8, 2026

Improper neutralization of input during web page generation ('cross-site scripting')... Moderate Unreviewed

CVE-2026-39935 was published Apr 8, 2026

Improper neutralization of input during web page generation ('cross-site scripting')... Moderate Unreviewed

CVE-2026-39838 was published Apr 7, 2026

Improper neutralization of input during web page generation ('cross-site scripting')... Moderate Unreviewed

CVE-2026-39840 was published Apr 7, 2026

MLflow is vulnerable to Stored Cross-Site Scripting (XSS) caused by unsafe parsing of YAML-based... Moderate Unreviewed

CVE-2026-33865 was published Apr 7, 2026

Bludit is vulnerable to Stored Cross-Site Scripting (XSS) in its page creating functionality. An... Moderate Unreviewed

CVE-2026-4420 was published Apr 7, 2026

A vulnerability was identified in code-projects Online Hotel Booking 1.0. Affected by this... Moderate Unreviewed

CVE-2026-5705 was published Apr 7, 2026

OCS Inventory NG Server version 2.12.3 and prior contain a stored cross-site scripting... Moderate Unreviewed

CVE-2026-22675 was published Apr 7, 2026

A vulnerability was determined in Cyber-III Student-Management-System up to... Moderate Unreviewed

CVE-2026-5671 was published Apr 6, 2026

A flaw has been found in Cyber-III Student-Management-System up to... Moderate Unreviewed

CVE-2026-5668 was published Apr 6, 2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2026-34897 was published Apr 6, 2026

A stored cross-site scripting (XSS) vulnerability in Bynder v0.1.394 allows attackers to execute... Moderate Unreviewed

CVE-2026-31153 was published Apr 6, 2026

A vulnerability was detected in code-projects Online Shoe Store 1.0. This affects an unknown part... Moderate Unreviewed

CVE-2026-5647 was published Apr 6, 2026

A security flaw has been discovered in Cyber-III Student-Management-System up to... Moderate Unreviewed

CVE-2026-5644 was published Apr 6, 2026

A vulnerability was identified in Cyber-III Student-Management-System up to... Moderate Unreviewed

CVE-2026-5643 was published Apr 6, 2026

A flaw has been found in assafelovic gpt-researcher up to 3.4.3. The impacted element is an... Moderate Unreviewed

CVE-2026-5630 was published Apr 6, 2026

A weakness has been identified in assafelovic gpt-researcher up to 3.4.3. This issue affects some... Moderate Unreviewed

CVE-2026-5625 was published Apr 6, 2026

A weakness has been identified in givanz Vvvebjs up to 2.0.5. The affected element is an unknown... Moderate Unreviewed

CVE-2026-5615 was published Apr 6, 2026

A vulnerability has been found in Akaunting up to 3.1.21. This issue affects some unknown... Moderate Unreviewed

CVE-2026-5568 was published Apr 5, 2026

A flaw has been found in code-projects Simple Laundry System 1.0. This affects an unknown part of... Moderate Unreviewed

CVE-2026-5539 was published Apr 5, 2026

A vulnerability was found in code-projects Simple Laundry System 1.0. This issue affects some... Moderate Unreviewed

CVE-2026-5541 was published Apr 5, 2026

A vulnerability was determined in code-projects Simple Laundry System 1.0. Impacted is an unknown... Moderate Unreviewed

CVE-2026-5542 was published Apr 5, 2026

A vulnerability was determined in badlogic pi-mono 0.58.4. The impacted element is an unknown... Moderate Unreviewed

CVE-2026-5533 was published Apr 5, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

32,340 advisories