GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 31,787
Composer 5,986
Erlang 73
GitHub Actions 53
Go 4,029
Maven 6,658
npm 6,516
NuGet 976
pip 5,380
Pub 13
RubyGems 1,070
Rust 1,404
Swift 61

Unreviewed advisories

All unreviewed 309,116

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

147,216 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Orbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More plugin... Moderate Unreviewed

CVE-2026-11358 was published Jun 18, 2026

The Kadence Blocks — Page Builder Toolkit for Gutenberg Editor plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2026-11357 was published Jun 18, 2026

The Simple Membership plugin for WordPress is vulnerable to authorization bypass in all versions... Moderate Unreviewed

CVE-2026-12093 was published Jun 18, 2026

The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordPress... Moderate Unreviewed

CVE-2026-11776 was published Jun 18, 2026

The Services Section Block – Showcase Service Details in Grid or Columns plugin for WordPress is... Moderate Unreviewed

CVE-2026-11402 was published Jun 18, 2026

The Advanced Order Export For WooCommerce plugin for WordPress is vulnerable to generic SQL... Moderate Unreviewed

CVE-2026-11360 was published Jun 18, 2026

The Optimole – Optimize Images | Convert WebP & AVIF | CDN & Lazy Load | Image Optimization... Moderate Unreviewed

CVE-2026-11784 was published Jun 18, 2026

The Equalize Digital Accessibility Checker – WCAG, ADA, EAA and Section 508 compliance plugin for... Moderate Unreviewed

CVE-2026-9199 was published Jun 18, 2026

The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordPress... Moderate Unreviewed

CVE-2026-11777 was published Jun 18, 2026

The FireBox Popups – Increase Sales and Grow Your Email List plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2026-12120 was published Jun 18, 2026

The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2026-10736 was published Jun 18, 2026

The Dokan: AI Powered WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay,... Moderate Unreviewed

CVE-2026-10023 was published Jun 18, 2026

The Event Koi Lite – Events Calendar, Event Management, RSVP, and Tickets plugin for WordPress is... Moderate Unreviewed

CVE-2026-10029 was published Jun 18, 2026

The PressPrimer Quiz – AI Quiz Maker, Exam Builder & LMS Assessment Plugin plugin for WordPress... Moderate Unreviewed

CVE-2026-10623 was published Jun 18, 2026

marimo before 0.23.9 contains a reflected cross-site scripting vulnerability in the notebook page... Moderate Unreviewed

CVE-2026-54386 was published Jun 18, 2026

Hermes Agent before 0.16.0 creates response_store.db and webhook_subscriptions.json with world... Moderate Unreviewed

CVE-2026-53870 was published Jun 17, 2026

Sonatype Nexus Repository Manager before 3.93.0 contains an authorization vulnerability in the... Moderate Unreviewed

CVE-2026-10741 was published Jun 17, 2026

A security vulnerability has been detected in SourceCodester CET Automated Grading System with AI... Moderate Unreviewed

CVE-2026-12529 was published Jun 17, 2026

Missing Authentication for Critical Function vulnerability in RTI Connext Professional (Security... Moderate Unreviewed

CVE-2026-30799 was published Jun 17, 2026

Improper Neutralization of Script in Attributes in a Web Page vulnerability in pragdave earmark... Moderate Unreviewed

CVE-2026-48591 was published Jun 17, 2026

A maliciously crafted RFA file, when converted to FormIt via “Convert RFA to FormIt” in Autodesk... Moderate Unreviewed

CVE-2026-1288 was published Jun 17, 2026

A flaw was found in Katello's of Red Hat Satellite. A content upload functionality where... Moderate Unreviewed

CVE-2026-12515 was published Jun 17, 2026

A vulnerability in the vmadmin CLI of Cisco Umbrella Virtual Appliance could allow an... Moderate Unreviewed

CVE-2026-20246 was published Jun 17, 2026

Dell PowerFlex Manager, version(s) [Versions], contain(s) an Improper Neutralization of Special... Moderate Unreviewed

CVE-2026-35069 was published Jun 17, 2026

A vulnerability in the browser-based version of Cisco Webex App could have allowed an... Moderate Unreviewed

CVE-2026-20178 was published Jun 17, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

147,216 advisories