GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 30,628
Composer 5,817
Erlang 61
GitHub Actions 50
Go 3,821
Maven 6,571
npm 6,204
NuGet 939
pip 5,090
Pub 13
RubyGems 1,059
Rust 1,357
Swift 54

Unreviewed advisories

All unreviewed 302,601

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

302,601 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified. Unknown Unreviewed

CVE-2026-8704 was published May 16, 2026

Crypt::DSA versions before 1.20 for Perl generate seeds using rand. Seeds were generated using... Unknown Unreviewed

CVE-2026-8700 was published May 16, 2026

radare2 6.1.5 contains a use-after-free vulnerability in the gdbr_pids_list() function within the... High Unreviewed

CVE-2026-8696 was published May 15, 2026

ORSEE (Online Recruitment System for Economic Experiments) 3.1.0 contains an authenticated Remote... Unknown Unreviewed

CVE-2025-67031 was published May 15, 2026

Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 Fail to validate the... Moderate Unreviewed

CVE-2026-4054 was published May 15, 2026

Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13 fail to enforce the PostEditTimeLimit... Low Unreviewed

CVE-2026-4053 was published May 15, 2026

PHP Timeclock 1.04 contains multiple cross-site scripting vulnerabilities that allow... Moderate Unreviewed

CVE-2021-47967 was published May 15, 2026

phpMyFAQ before 4.1.2 contains an insufficient authorization vulnerability in admin-api routes... Moderate Unreviewed

CVE-2026-45009 was published May 15, 2026

phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in search.twig where... Moderate Unreviewed

CVE-2026-46361 was published May 15, 2026

Schlix CMS 2.2.6-6 contains a remote code execution vulnerability that allows authenticated... High Unreviewed

CVE-2021-47964 was published May 15, 2026

PHP Timeclock 1.04 contains time-based and boolean-based blind SQL injection vulnerabilities in... High Unreviewed

CVE-2021-47966 was published May 15, 2026

phpMyFAQ before 4.1.2 contains a path traversal vulnerability in Client::deleteClientFolder that... Moderate Unreviewed

CVE-2026-45008 was published May 15, 2026

CouchCMS 2.2.1 contains a server-side request forgery vulnerability that allows authenticated... Moderate Unreviewed

CVE-2021-47958 was published May 15, 2026

phpMyFAQ before 4.1.2 contains an authorization bypass vulnerability in... Moderate Unreviewed

CVE-2026-46362 was published May 15, 2026

WordPress Plugin WP Super Edit 2.5.4 and earlier contains an unrestricted file upload... Critical Unreviewed

CVE-2021-47965 was published May 15, 2026

phpMyFAQ before 4.1.2 contains an improper restriction of excessive authentication attempts... Critical Unreviewed

CVE-2026-45010 was published May 15, 2026

phpMyFAQ before 4.1.2 contains a missing authorization vulnerability in the DELETE /admin/api... Moderate Unreviewed

CVE-2026-46365 was published May 15, 2026

phpMyFAQ before 4.1.2 contains an information disclosure vulnerability in the getIdFromSolutionId... High Unreviewed

CVE-2026-46366 was published May 15, 2026

WordPress Plugin WPGraphQL 1.3.5 contains a denial of service vulnerability that allows... High Unreviewed

CVE-2021-47959 was published May 15, 2026

phpMyFAQ before 4.1.2 contains an unauthenticated SQL injection vulnerability in BuiltinCaptcha:... Critical Unreviewed

CVE-2026-46364 was published May 15, 2026

phpMyFAQ before 4.1.2 contains a sql injection vulnerability in CurrentUser::setTokenData that... High Unreviewed

CVE-2026-46359 was published May 15, 2026

Savsoft Quiz 5.0 contains a persistent cross-site scripting vulnerability in the user account... Moderate Unreviewed

CVE-2021-47962 was published May 15, 2026

phpMyFAQ before 4.1.2 contains missing permission checks in ConfigurationTabController.php where... Moderate Unreviewed

CVE-2026-45007 was published May 15, 2026

phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in Utils::parseUrl()... High Unreviewed

CVE-2026-46367 was published May 15, 2026

Anote 1.0 contains a persistent cross-site scripting vulnerability that allows attackers to... Moderate Unreviewed

CVE-2021-47963 was published May 15, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

302,601 advisories