GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 26,046
Composer 5,218
Erlang 40
GitHub Actions 40
Go 2,974
Maven 6,256
npm 4,621
NuGet 788
pip 4,317
Pub 12
RubyGems 984
Rust 1,131
Swift 49

Unreviewed advisories

All unreviewed 289,790

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

109,771 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Emails sent by pretix can utilize placeholders that will be filled with customer data. For... High Unreviewed

CVE-2026-2451 was published Feb 16, 2026

Emails sent by pretix can utilize placeholders that will be filled with customer data. For... High Unreviewed

CVE-2026-2452 was published Feb 16, 2026

Emails sent by pretix can utilize placeholders that will be filled with customer data. For... High Unreviewed

CVE-2026-2415 was published Feb 16, 2026

A vulnerability was found in EFM iptime A6004MX 14.18.2. Affected is the function... High Unreviewed

CVE-2026-2550 was published Feb 16, 2026

A security flaw has been discovered in Flos Freeware Notepad2 4.2.22/4.2.23/4.2.24/4.2.25.... High Unreviewed

CVE-2026-2538 was published Feb 16, 2026

A weakness has been identified in Total VPN 0.5.29.0 on Windows. Affected by this vulnerability... High Unreviewed

CVE-2026-2542 was published Feb 16, 2026

eNet SMART HOME server 2.2.1 and 2.3.1 contains a missing authorization vulnerability in the... High Unreviewed

CVE-2026-26368 was published Feb 15, 2026

eNet SMART HOME server 2.2.1 and 2.3.1 contains a missing authorization vulnerability in the... High Unreviewed

CVE-2026-26367 was published Feb 15, 2026

A vulnerability was identified in Unidocs ezPDF DRM Reader and ezPDF Reader 2.0/3.0.0.4 on 32-bit... High Unreviewed

CVE-2026-2516 was published Feb 15, 2026

The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment... High Unreviewed

CVE-2025-32061 was published Feb 15, 2026

The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment... High Unreviewed

CVE-2025-32062 was published Feb 15, 2026

The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment... High Unreviewed

CVE-2025-32059 was published Feb 15, 2026

The Micca KE700 system contains flawed resynchronization logic and is vulnerable to replay... High Unreviewed

CVE-2026-2540 was published Feb 15, 2026

The Ecwid by Lightspeed Ecommerce Shopping Cart plugin for WordPress is vulnerable to Privilege... High Unreviewed

CVE-2026-1750 was published Feb 15, 2026

The Flexi Product Slider and Grid for WooCommerce plugin for WordPress is vulnerable to Local... High Unreviewed

CVE-2026-1988 was published Feb 14, 2026

The Super Simple Contact Form plugin for WordPress is vulnerable to Reflected Cross-Site... High Unreviewed

CVE-2026-0753 was published Feb 14, 2026

The PhotoStack Gallery plugin for WordPress is vulnerable to SQL Injection via the 'postid'... High Unreviewed

CVE-2026-2024 was published Feb 14, 2026

The Super Page Cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... High Unreviewed

CVE-2026-1843 was published Feb 14, 2026

The User Language Switch plugin for WordPress is vulnerable to Server-Side Request Forgery in all... High Unreviewed

CVE-2026-0745 was published Feb 14, 2026

The BlueSnap Payment Gateway for WooCommerce plugin for WordPress is vulnerable to Missing... High Unreviewed

CVE-2026-0692 was published Feb 14, 2026

The Magic Login Mail or QR Code plugin for WordPress is vulnerable to Privilege Escalation in all... High Unreviewed

CVE-2026-2144 was published Feb 14, 2026

Versions of the package directorytree/imapengine before 1.22.3 are vulnerable to Improper... High Unreviewed

CVE-2026-2469 was published Feb 14, 2026

An issue in OpenSourcePOS v3.4.1 allows attackers to execute arbitrary code via returning a... High Unreviewed

CVE-2025-70093 was published Feb 13, 2026

The PixelYourSite PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... High Unreviewed

CVE-2026-1844 was published Feb 14, 2026

The PixelYourSite – Your smart PIXEL (TAG) & API Manager plugin for WordPress is vulnerable to... High Unreviewed

CVE-2026-1841 was published Feb 14, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

109,771 advisories