Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
48
Go
3,399
Maven
5,000+
npm
5,000+
NuGet
882
pip
4,618
Pub
13
RubyGems
1,026
Rust
1,205
Swift
52
Unreviewed advisories
All unreviewed
5,000+

324,468 advisories

Loading
A vulnerability was determined in Totolink WA300 5.2cu.7112_B20190227. Affected by this issue is... Moderate Unreviewed
CVE-2026-4497 was published Mar 20, 2026
On Hyundai Pay Kasse HK-1000 devices, a side channel for the row-based OLED display was found.... Low Unreviewed
CVE-2019-14360 was published May 24, 2022
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in... High Unreviewed
CVE-2026-28703 was published Apr 3, 2026
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in... High Unreviewed
CVE-2026-28754 was published Apr 3, 2026
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in... High Unreviewed
CVE-2026-28756 was published Apr 3, 2026
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in... High Unreviewed
CVE-2026-4108 was published Apr 3, 2026
A vulnerability was identified in Casdoor 2.356.0. Affected by this issue is some unknown... Moderate Unreviewed
CVE-2026-5467 was published Apr 3, 2026
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in... High Unreviewed
CVE-2026-3879 was published Apr 3, 2026
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in... High Unreviewed
CVE-2026-4107 was published Apr 3, 2026
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in... High Unreviewed
CVE-2026-3880 was published Apr 3, 2026
A vulnerability was determined in Wavlink WL-WN579X3-C 231124. This impacts the function... High Unreviewed
CVE-2026-5004 was published Mar 28, 2026
A flaw has been found in TOTOLINK X6000R 9.4.0cu.1360_B20241207/9.4.0cu.1498_B20250826. Affected... High Unreviewed
CVE-2026-4611 was published Mar 24, 2026
A vulnerability has been found in Tenda AC15 15.03.05.19. This affects the function formSetCfm of... High Unreviewed
CVE-2026-4975 was published Mar 27, 2026
A security flaw has been discovered in Tenda F453 1.0.0.3. The affected element is the function... Moderate Unreviewed
CVE-2026-4554 was published Mar 22, 2026
Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted file in... Critical Unreviewed
CVE-2026-34714 was published Mar 30, 2026
A vulnerability was determined in Dialogue App up to 4.3.2 on Android. The affected element is an... Low Unreviewed
CVE-2026-5455 was published Apr 3, 2026
The Perfmatters plugin for WordPress is vulnerable to arbitrary file deletion via path traversal... High Unreviewed
CVE-2026-4350 was published Apr 3, 2026
A vulnerability was identified in Wahoo Fitness SYSTM App up to 7.2.1 on Android. Impacted is an... Low Unreviewed
CVE-2026-5462 was published Apr 3, 2026
A weakness has been identified in Noelse Individuals & Pro App up to 2.1.7 on Android. This... Low Unreviewed
CVE-2026-5458 was published Apr 3, 2026
A vulnerability was identified in Align Technology My Invisalign App 3.12.4 on Android. The... Low Unreviewed
CVE-2026-5456 was published Apr 3, 2026
A security flaw has been discovered in PropertyGuru AgentNet Singapore App up to 23.7.10 on... Low Unreviewed
CVE-2026-5457 was published Apr 3, 2026
Incorrect Default Permissions vulnerability in AIRBUS PSS TETRA Connectivity Server on Windows... Moderate Unreviewed
CVE-2025-7024 was published Apr 3, 2026
Claude SDK for Python has Insecure Default File Permissions in Local Filesystem Memory Tool Moderate
CVE-2026-34450 was published for anthropic (pip) Apr 1, 2026
gn00295120 Credited to gn00295120
An issue was discovered in Roundcube Webmail 1.6.0 before 1.6.14. Insufficient Cascading Style... Moderate Unreviewed
CVE-2026-35540 was published Apr 3, 2026
An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. XSS exists because of... Moderate Unreviewed
CVE-2026-35539 was published Apr 3, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database