GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 30,628
Composer 5,817
Erlang 61
GitHub Actions 50
Go 3,821
Maven 6,571
npm 6,204
NuGet 939
pip 5,090
Pub 13
RubyGems 1,059
Rust 1,357
Swift 54

Unreviewed advisories

All unreviewed 302,602

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

114,619 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

radare2 6.1.5 contains a use-after-free vulnerability in the gdbr_pids_list() function within the... High Unreviewed

CVE-2026-8696 was published May 15, 2026

Schlix CMS 2.2.6-6 contains a remote code execution vulnerability that allows authenticated... High Unreviewed

CVE-2021-47964 was published May 15, 2026

PHP Timeclock 1.04 contains time-based and boolean-based blind SQL injection vulnerabilities in... High Unreviewed

CVE-2021-47966 was published May 15, 2026

phpMyFAQ before 4.1.2 contains an information disclosure vulnerability in the getIdFromSolutionId... High Unreviewed

CVE-2026-46366 was published May 15, 2026

WordPress Plugin WPGraphQL 1.3.5 contains a denial of service vulnerability that allows... High Unreviewed

CVE-2021-47959 was published May 15, 2026

phpMyFAQ before 4.1.2 contains a sql injection vulnerability in CurrentUser::setTokenData that... High Unreviewed

CVE-2026-46359 was published May 15, 2026

phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in Utils::parseUrl()... High Unreviewed

CVE-2026-46367 was published May 15, 2026

radare2 6.1.5 contains a use-after-free vulnerability in the gdbr_threads_list() function that... High Unreviewed

CVE-2026-8695 was published May 15, 2026

Code injection in SQL code generation in Apache Flink 1.15.0 through 1.20.x and 2.0.0 through 2.x... High Unreviewed

CVE-2026-35194 was published May 15, 2026

An issue in Nodemailer smtp_server before v.3.18.3 allows a remote attacker to cause a denial of... High Unreviewed

CVE-2026-38728 was published May 15, 2026

Oinone Pamirs 7.0.0 contains a command injection vulnerability in CommandHelper.executeCommands.... High Unreviewed

CVE-2026-39054 was published May 15, 2026

A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools... High Unreviewed

CVE-2026-34253 was published May 15, 2026

Permission control vulnerability in the web. Impact: Successful exploitation of this... High Unreviewed

CVE-2026-41964 was published May 15, 2026

SzafirHost verifies the signature of the downloaded JAR file using class JarInputStream (reading... High Unreviewed

CVE-2026-44088 was published May 15, 2026

The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to... High Unreviewed

CVE-2026-4094 was published May 15, 2026

The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to Privilege Escalation in... High Unreviewed

CVE-2026-6228 was published May 15, 2026

The Quick Playground plugin for WordPress is vulnerable to Path Traversal in versions up to and... High Unreviewed

CVE-2026-6403 was published May 15, 2026

VMware Fusion contains a TOCTOU (Time-of-check Time-of-use) vulnerability that occurs during an... High Unreviewed

CVE-2026-41702 was published May 15, 2026

Improper input validation in Delphix Continuous Data connectors allows an authenticated user to... High Unreviewed

CVE-2026-8654 was published May 15, 2026

Improper verification of cryptographic signature in the Radeon RGB tool could allow a malicious... High Unreviewed

CVE-2024-36334 was published May 15, 2026

A DLL hijacking vulnerability in the AMD Cleanup Utility could allow an attacker to achieve... High Unreviewed

CVE-2024-36333 was published May 15, 2026

Improper isolation of VCN-JPEG HW register space could allow a malicious Guest Virtual Machine ... High Unreviewed

CVE-2024-36323 was published May 15, 2026

Improper isolation of shared resources within the CPU operation cache on Zen 2-based products... High Unreviewed

CVE-2025-54518 was published May 15, 2026

Cross-site request forgery vulnerability exists in Musetheque V4 Information Disclosure for... High Unreviewed

CVE-2026-28761 was published May 15, 2026

An unchecked return value within the AMD Platform Management Framework (PMF) could allow an... High Unreviewed

CVE-2025-0028 was published May 15, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

114,619 advisories