GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,905
Composer 5,452
Erlang 46
GitHub Actions 47
Go 3,340
Maven 6,338
npm 5,367
NuGet 881
pip 4,549
Pub 12
RubyGems 1,012
Rust 1,202
Swift 51

Unreviewed advisories

All unreviewed 295,465

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,344 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Missing Authorization vulnerability in StellarWP Restrict Content restrict-content allows... High Unreviewed

CVE-2026-32546 was published Mar 25, 2026

Missing Authorization vulnerability in Link Software LLC WP Terms Popup wp-terms-popup allows... High Unreviewed

CVE-2026-32495 was published Mar 25, 2026

Missing Authorization vulnerability in wp-configurator WP Configurator Pro wp-configurator-pro... High Unreviewed

CVE-2026-32501 was published Mar 25, 2026

Missing Authorization vulnerability in kamleshyadav Miraculous miraculous allows Exploiting... High Unreviewed

CVE-2026-32515 was published Mar 25, 2026

Missing Authorization vulnerability in Devteam HaywoodTech Product Rearrange for WooCommerce... High Unreviewed

CVE-2026-31921 was published Mar 25, 2026

Missing Authorization vulnerability in WebToffee Comments Import & Export comments-import-export... High Unreviewed

CVE-2026-32441 was published Mar 25, 2026

Missing Authorization vulnerability in weDevs WP User Frontend wp-user-frontend allows Exploiting... High Unreviewed

CVE-2026-32485 was published Mar 25, 2026

Missing Authorization vulnerability in Metagauss RegistrationMagic custom-registration-form... High Unreviewed

CVE-2026-32498 was published Mar 25, 2026

Missing Authorization vulnerability in Aarsiv Groups Automated FedEx live/manual rates with... High Unreviewed

CVE-2026-25456 was published Mar 25, 2026

Missing Authorization vulnerability in Arni Cinco WPCargo Track & Trace wpcargo allows Exploiting... High Unreviewed

CVE-2026-25401 was published Mar 25, 2026

Missing Authorization vulnerability in CoderPress Commerce Coinbase For WooCommerce commerce... High Unreviewed

CVE-2026-25396 was published Mar 25, 2026

Missing Authorization vulnerability in tychesoftwares Print Invoice & Delivery Notes for... High Unreviewed

CVE-2026-25317 was published Mar 25, 2026

Missing Authorization vulnerability in PublishPress PublishPress Authors publishpress-authors... High Unreviewed

CVE-2026-25309 was published Mar 25, 2026

Missing Authorization vulnerability in RadiusTheme Team tlp-team allows Exploiting Incorrectly... High Unreviewed

CVE-2026-25026 was published Mar 25, 2026

Missing Authorization vulnerability in WPFactory Helpdesk Support Ticket System for WooCommerce... High Unreviewed

CVE-2026-23977 was published Mar 25, 2026

Missing Authorization vulnerability in loopus WP Cost Estimation & Payment Forms Builder... High Unreviewed

CVE-2026-24363 was published Mar 25, 2026

Missing Authorization vulnerability in Theme-one The Grid the-grid allows Exploiting Incorrectly... High Unreviewed

CVE-2026-24369 was published Mar 25, 2026

Missing Authorization vulnerability in wproyal News Magazine X news-magazine-x allows Exploiting... High Unreviewed

CVE-2026-24382 was published Mar 25, 2026

Missing Authorization vulnerability in BlueGlass Interactive AG Jobs for WordPress job-postings... High Unreviewed

CVE-2026-23806 was published Mar 25, 2026

Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management... High Unreviewed

CVE-2025-69358 was published Mar 25, 2026

The Expire Users plugin for WordPress is vulnerable to Privilege Escalation in all versions up to... High Unreviewed

CVE-2026-4261 was published Mar 21, 2026

The Linksy Search and Replace plugin for WordPress is vulnerable to unauthorized modification of... High Unreviewed

CVE-2026-2941 was published Mar 21, 2026

Missing Authorization vulnerability in Dotstore Fraud Prevention For Woocommerce allows... High Unreviewed

CVE-2026-25443 was published Mar 19, 2026

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access... High Unreviewed

CVE-2026-25312 was published Mar 19, 2026

The KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to... High Unreviewed

CVE-2026-2992 was published Mar 18, 2026

Previous1…54 Next

Previous 1 2 3 4 5 … 53 54 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,344 advisories