GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 30,628
Composer 5,817
Erlang 61
GitHub Actions 50
Go 3,821
Maven 6,571
npm 6,204
NuGet 939
pip 5,090
Pub 13
RubyGems 1,059
Rust 1,357
Swift 54

Unreviewed advisories

All unreviewed 302,602

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

144,771 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Essential Chat Support plugin for WordPress is vulnerable to authorization bypass in all... Moderate Unreviewed

CVE-2026-8681 was published May 16, 2026

Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 Fail to validate the... Moderate Unreviewed

CVE-2026-4054 was published May 15, 2026

PHP Timeclock 1.04 contains multiple cross-site scripting vulnerabilities that allow... Moderate Unreviewed

CVE-2021-47967 was published May 15, 2026

phpMyFAQ before 4.1.2 contains an insufficient authorization vulnerability in admin-api routes... Moderate Unreviewed

CVE-2026-45009 was published May 15, 2026

phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in search.twig where... Moderate Unreviewed

CVE-2026-46361 was published May 15, 2026

phpMyFAQ before 4.1.2 contains a path traversal vulnerability in Client::deleteClientFolder that... Moderate Unreviewed

CVE-2026-45008 was published May 15, 2026

CouchCMS 2.2.1 contains a server-side request forgery vulnerability that allows authenticated... Moderate Unreviewed

CVE-2021-47958 was published May 15, 2026

phpMyFAQ before 4.1.2 contains an authorization bypass vulnerability in... Moderate Unreviewed

CVE-2026-46362 was published May 15, 2026

phpMyFAQ before 4.1.2 contains a missing authorization vulnerability in the DELETE /admin/api... Moderate Unreviewed

CVE-2026-46365 was published May 15, 2026

Savsoft Quiz 5.0 contains a persistent cross-site scripting vulnerability in the user account... Moderate Unreviewed

CVE-2021-47962 was published May 15, 2026

phpMyFAQ before 4.1.2 contains missing permission checks in ConfigurationTabController.php where... Moderate Unreviewed

CVE-2026-45007 was published May 15, 2026

Anote 1.0 contains a persistent cross-site scripting vulnerability that allows attackers to... Moderate Unreviewed

CVE-2021-47963 was published May 15, 2026

Podcast Generator 3.1 contains a persistent cross-site scripting vulnerability that allows... Moderate Unreviewed

CVE-2021-47968 was published May 15, 2026

phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in FAQ creation and... Moderate Unreviewed

CVE-2026-46363 was published May 15, 2026

phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in SvgSanitizer:... Moderate Unreviewed

CVE-2026-46360 was published May 15, 2026

Cockpit CMS through version 2.14.0, patched in commit 72a83fc, contains a stored cross-site... Moderate Unreviewed

CVE-2026-23695 was published May 15, 2026

* Countermeasures for DPA within SYMCRYPTO engine on SixG301xxx devices are not sufficiently... Moderate Unreviewed

CVE-2025-14972 was published May 15, 2026

Oinone Pamirs 7.0.0 contains a code execution vulnerability via ScriptRunner. The method... Moderate Unreviewed

CVE-2026-39052 was published May 15, 2026

Oinone Pamirs 7.0.0 contains an XML External Entity (XXE) issue in its XStream-based XML parsing... Moderate Unreviewed

CVE-2026-39053 was published May 15, 2026

Medical Management System a81df1ce700a9662cb136b27af47f4cbde64156b is vulnerable to Insecure... Moderate Unreviewed

CVE-2025-67437 was published May 15, 2026

Imager versions through 1.030 for Perl allow a heap out of bounds (OOB) write on crafted multi... Moderate Unreviewed

CVE-2026-8669 was published May 15, 2026

Permission control vulnerability in calls. Impact: Successful exploitation of this vulnerability... Moderate Unreviewed

CVE-2026-41960 was published May 15, 2026

Permission control vulnerability in contacts. Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2026-41961 was published May 15, 2026

Permission control vulnerability in the smart sensing service. Impact: Successful exploitation of... Moderate Unreviewed

CVE-2026-41966 was published May 15, 2026

Use-After-Free (UAF) vulnerability in the web. Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2026-41965 was published May 15, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

144,771 advisories