GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,583
Composer 5,395
Erlang 44
GitHub Actions 46
Go 3,272
Maven 6,323
npm 5,242
NuGet 867
pip 4,521
Pub 12
RubyGems 1,007
Rust 1,194
Swift 51

Unreviewed advisories

All unreviewed 294,468

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,097 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The User Registration & Membership plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2026-4056 was published Mar 24, 2026

The Smart Custom Fields plugin for WordPress is vulnerable to unauthorized access of data due to... Moderate Unreviewed

CVE-2026-4066 was published Mar 24, 2026

The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to unauthorized deletion... Moderate Unreviewed

CVE-2026-3225 was published Mar 24, 2026

The Canto plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and... Moderate Unreviewed

CVE-2026-3335 was published Mar 21, 2026

The Punnel – Landing Page Builder plugin for WordPress is vulnerable to Missing Authorization in... Moderate Unreviewed

CVE-2026-3645 was published Mar 21, 2026

The WP-Chatbot for Messenger plugin for WordPress is vulnerable to authorization bypass in all... Moderate Unreviewed

CVE-2026-3506 was published Mar 21, 2026

The Smarter Analytics plugin for WordPress is vulnerable to unauthorized access in all versions... Moderate Unreviewed

CVE-2026-3570 was published Mar 21, 2026

The Build App Online plugin for WordPress is vulnerable to unauthorized access in all versions up... Moderate Unreviewed

CVE-2026-3651 was published Mar 21, 2026

The Speedup Optimization plugin for WordPress is vulnerable to Missing Authorization in all... Moderate Unreviewed

CVE-2026-4127 was published Mar 21, 2026

The Expire Users plugin for WordPress is vulnerable to Privilege Escalation in all versions up to... High Unreviewed

CVE-2026-4261 was published Mar 21, 2026

The Linksy Search and Replace plugin for WordPress is vulnerable to unauthorized modification of... High Unreviewed

CVE-2026-2941 was published Mar 21, 2026

The Company Posts for LinkedIn plugin for WordPress is vulnerable to Missing Authorization in all... Moderate Unreviewed

CVE-2026-1935 was published Mar 21, 2026

The Hr Press Lite plugin for WordPress is vulnerable to unauthorized access of sensitive employee... Moderate Unreviewed

CVE-2026-2720 was published Mar 21, 2026

The Group Chat & Video Chat by AtomChat plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2026-1253 was published Mar 21, 2026

The RepairBuddy – Repair Shop CRM & Booking Plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2026-3567 was published Mar 21, 2026

The RockPress plugin for WordPress is vulnerable to Missing Authorization in all versions up to,... Moderate Unreviewed

CVE-2026-3550 was published Mar 20, 2026

The Aimogen Pro plugin for WordPress is vulnerable to Arbitrary Function Call that can lead to... Critical Unreviewed

CVE-2026-4038 was published Mar 20, 2026

Missing Authorization (CWE-862) in Kibana’s server-side Detection Rule Management can lead to... Moderate Unreviewed

CVE-2026-26939 was published Mar 19, 2026

Missing Authorization vulnerability in Dotstore Fraud Prevention For Woocommerce allows... High Unreviewed

CVE-2026-25443 was published Mar 19, 2026

Missing Authorization vulnerability in UiPress UiPress lite allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2026-27091 was published Mar 19, 2026

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access... High Unreviewed

CVE-2026-25312 was published Mar 19, 2026

The Instant Popup Builder plugin for WordPress is vulnerable to Unauthenticated Arbitrary... Moderate Unreviewed

CVE-2026-3475 was published Mar 19, 2026

Missing Authorization vulnerability in Tips and Tricks HQ WP eMember allows Exploiting... Moderate Unreviewed

CVE-2026-28070 was published Mar 19, 2026

The KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to... High Unreviewed

CVE-2026-2992 was published Mar 18, 2026

The Post SMTP plugin for WordPress is vulnerable to unauthorized modification of data due to a... Moderate Unreviewed

CVE-2026-2559 was published Mar 18, 2026

Previous1…244 Next

Previous 1 2 3 4 5 … 243 244 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,097 advisories