GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,475
Composer 5,369
Erlang 44
GitHub Actions 45
Go 3,248
Maven 6,316
npm 5,215
NuGet 867
pip 4,513
Pub 12
RubyGems 997
Rust 1,189
Swift 51

Unreviewed advisories

All unreviewed 293,990

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,078 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Missing Authorization (CWE-862) in Kibana’s server-side Detection Rule Management can lead to... Moderate Unreviewed

CVE-2026-26939 was published Mar 19, 2026

Missing Authorization vulnerability in Dotstore Fraud Prevention For Woocommerce allows... High Unreviewed

CVE-2026-25443 was published Mar 19, 2026

The Instant Popup Builder plugin for WordPress is vulnerable to Unauthenticated Arbitrary... Moderate Unreviewed

CVE-2026-3475 was published Mar 19, 2026

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access... High Unreviewed

CVE-2026-25312 was published Mar 19, 2026

Missing Authorization vulnerability in UiPress UiPress lite allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2026-27091 was published Mar 19, 2026

Missing Authorization vulnerability in Tips and Tricks HQ WP eMember allows Exploiting... Moderate Unreviewed

CVE-2026-28070 was published Mar 19, 2026

The KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to... High Unreviewed

CVE-2026-2992 was published Mar 18, 2026

The Post SMTP plugin for WordPress is vulnerable to unauthorized modification of data due to a... Moderate Unreviewed

CVE-2026-2559 was published Mar 18, 2026

Missing Authorization vulnerability in WebberZone Contextual Related Posts allows Exploiting... Moderate Unreviewed

CVE-2026-32565 was published Mar 18, 2026

The Subscriptions for WooCommerce plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2026-1926 was published Mar 18, 2026

Missing authorization checks on multiple gRPC service endpoints in PowerShell Universal before... High Unreviewed

CVE-2026-4064 was published Mar 17, 2026

Missing Authorization vulnerability in Pluggabl Booster for WooCommerce allows Exploiting... Moderate Unreviewed

CVE-2026-32586 was published Mar 17, 2026

The Royal Addons for Elementor – Addons and Templates Kit for Elementor plugin for WordPress is... Moderate Unreviewed

CVE-2026-2373 was published Mar 17, 2026

Missing Authorization vulnerability in Saad Iqbal WP EasyPay allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2026-32587 was published Mar 16, 2026

Missing Authorization vulnerability in Webnus Inc. Modern Events Calendar allows Exploiting... Moderate Unreviewed

CVE-2026-32583 was published Mar 16, 2026

The User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User... Moderate Unreviewed

CVE-2026-2233 was published Mar 16, 2026

The Thim Kit for Elementor – Pre-built Templates & Widgets for Elementor plugin for WordPress is... Moderate Unreviewed

CVE-2026-1870 was published Mar 16, 2026

The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2026-1948 was published Mar 16, 2026

GROWI OpenAI thread/message API endpoints do not perform authorization. Affected are v7.4.5 and... High Unreviewed

CVE-2026-25083 was published Mar 16, 2026

The Social Icons Widget & Block by WPZOOM plugin for WordPress is vulnerable to unauthorized data... Moderate Unreviewed

CVE-2026-4063 was published Mar 13, 2026

Missing Authorization vulnerability in Really Simple Plugins Really Simple SSL really-simple-ssl... Moderate Unreviewed

CVE-2026-32461 was published Mar 13, 2026

Missing Authorization vulnerability in raratheme Lawyer Landing Page lawyer-landing-page allows... Moderate Unreviewed

CVE-2026-32487 was published Mar 13, 2026

The Appointment Booking Calendar — Simply Schedule Appointments plugin for WordPress is... High Unreviewed

CVE-2026-3045 was published Mar 13, 2026

Missing Authorization vulnerability in CyberChimps Responsive Blocks responsive-block-editor... Moderate Unreviewed

CVE-2026-32543 was published Mar 13, 2026

Missing Authorization vulnerability in wptravelengine Travel Booking travel-booking allows... Moderate Unreviewed

CVE-2026-32486 was published Mar 13, 2026

Previous1…244 Next

Previous 1 2 3 4 5 … 243 244 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,078 advisories