Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,405
Maven
5,000+
npm
5,000+
NuGet
882
pip
4,641
Pub
13
RubyGems
1,026
Rust
1,209
Swift
53
Unreviewed advisories
All unreviewed
5,000+

760 advisories

Loading
A vulnerability was detected in Dromara lamp-cloud up to 5.8.1. This vulnerability affects the... Moderate Unreviewed
CVE-2026-5529 was published Apr 5, 2026
A security flaw has been discovered in Tenda 4G03 Pro up to 1.0/1.1/04.03.01.53/192.168.0.1.... Moderate Unreviewed
CVE-2026-5526 was published Apr 5, 2026
A weakness has been identified in BookStackApp BookStack up to 26.03. Affected is the function... Moderate Unreviewed
CVE-2026-5484 was published Apr 3, 2026
A vulnerability was found in SourceCodester/mayuri_k Best Courier Management System 1.0. Affected... Moderate Unreviewed
CVE-2026-5330 was published Apr 2, 2026
A weakness has been identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS... Moderate Unreviewed
CVE-2026-5312 was published Apr 1, 2026
A security flaw has been discovered in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS... Moderate Unreviewed
CVE-2026-5311 was published Apr 1, 2026
A vulnerability was identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS... Moderate Unreviewed
CVE-2026-5215 was published Apr 1, 2026
OpenClaw versions 2026.3.7 before 2026.3.11 contain an authorization bypass vulnerability where... Critical Unreviewed
CVE-2026-32916 was published Mar 31, 2026
A security vulnerability has been detected in osrg GoBGP up to 4.3.0. Affected is the function... Moderate Unreviewed
CVE-2026-5124 was published Mar 30, 2026
A security flaw has been discovered in osrg GoBGP up to 4.3.0. This affects the function... Moderate Unreviewed
CVE-2026-5122 was published Mar 30, 2026
A vulnerability has been found in FRRouting FRR up to 10.5.1. This affects the function... Low Unreviewed
CVE-2026-5107 was published Mar 30, 2026
OpenClaw: Gateway Plugin Subagent Fallback `deleteSession` Uses Synthetic `operator.admin` High
GHSA-h4jx-hjr3-fhgc was published for openclaw (npm) Mar 29, 2026
zpbrent Credited to zpbrent
OpenClaw before 2026.3.11 contains a privilege escalation vulnerability in device.token.rotate... Critical Unreviewed
CVE-2026-32922 was published Mar 29, 2026
A security vulnerability has been detected in chatwoot up to 4.11.1. The affected element is an... Moderate Unreviewed
CVE-2026-4990 was published Mar 28, 2026
OpenClaw: Gateway Plugin HTTP Auth Grants Unrestricted operator.admin Runtime Scope to All Callers High
GHSA-qm2m-28pf-hgjw was published for openclaw (npm) Mar 27, 2026
zpbrent Credited to zpbrent
Keycloak: manage-clients permission escalates to full realm admin access Moderate
CVE-2026-3121 was published for org.keycloak:keycloak-services (Maven) Mar 26, 2026
A vulnerability has been found in Enter Software Iperius Backup up to 8.7.3. Affected by this... High Unreviewed
CVE-2026-4824 was published Mar 26, 2026
Incorrect Privilege Assignment vulnerability in Andrew Munro / AffiliateWP RewardsWP rewardswp... Critical Unreviewed
CVE-2026-32520 was published Mar 25, 2026
Incorrect Privilege Assignment vulnerability in Bit Apps Bit SMTP bit-smtp allows Privilege... Critical Unreviewed
CVE-2026-32519 was published Mar 25, 2026
Incorrect Privilege Assignment vulnerability in WPFunnels Creator LMS creatorlms allows Privilege... High Unreviewed
CVE-2026-32530 was published Mar 25, 2026
Incorrect Privilege Assignment vulnerability in wpeverest User Registration user-registration... High Unreviewed
CVE-2026-32488 was published Mar 25, 2026
Incorrect Privilege Assignment vulnerability in uxper Golo golo allows Privilege Escalation.This... Critical Unreviewed
CVE-2026-27051 was published Mar 25, 2026
Incorrect Privilege Assignment vulnerability in iqonicdesign WPBookit Pro wpbookit-pro allows... High Unreviewed
CVE-2026-25414 was published Mar 25, 2026
Incorrect Privilege Assignment vulnerability in Metagauss RegistrationMagic custom-registration... High Unreviewed
CVE-2026-24373 was published Mar 25, 2026
Incorrect Privilege Assignment vulnerability in wordpresschef Salon Booking System Pro salon... High Unreviewed
CVE-2026-25334 was published Mar 25, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database