GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,998
Composer 5,462
Erlang 46
GitHub Actions 48
Go 3,361
Maven 6,349
npm 5,410
NuGet 881
pip 4,554
Pub 12
RubyGems 1,013
Rust 1,205
Swift 51

Unreviewed advisories

All unreviewed 295,677

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

141,506 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Ibtana – WordPress Website Builder plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2026-1834 was published Mar 31, 2026

A vulnerability has been found in SourceCodester Simple Doctors Appointment System up to 1.0.... Moderate Unreviewed

CVE-2026-5181 was published Mar 31, 2026

OpenStack Glance <29.1.1, >=30.0.0 <30.1.1, ==31.0.0 is affected by Server-Side Request Forgery ... Moderate Unreviewed

CVE-2026-34881 was published Mar 31, 2026

A vulnerability was found in SourceCodester Teacher Record System 1.0. Impacted is an unknown... Moderate Unreviewed

CVE-2026-5182 was published Mar 31, 2026

A vulnerability was detected in SourceCodester Simple Doctors Appointment System 1.0. This... Moderate Unreviewed

CVE-2026-5179 was published Mar 31, 2026

A vulnerability was determined in TRENDnet TEW-713RE up to 1.02. The affected element is the... Moderate Unreviewed

CVE-2026-5183 was published Mar 31, 2026

A flaw has been found in SourceCodester Simple Doctors Appointment System 1.0. This vulnerability... Moderate Unreviewed

CVE-2026-5180 was published Mar 31, 2026

The Auto Post Scheduler plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2026-1877 was published Mar 31, 2026

A security vulnerability has been detected in Totolink A3300R 17.0.0cu.557_b20221024. Affected by... Moderate Unreviewed

CVE-2026-5178 was published Mar 31, 2026

The WooPayments: Integrated WooCommerce Payments plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2026-1710 was published Mar 31, 2026

The Loco Translate plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2026-4146 was published Mar 31, 2026

The Appointment Booking and Scheduler Plugin – Truebooker plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2026-1797 was published Mar 31, 2026

Improper verification of cryptographic signature in Smart Switch prior to version 3.7.69.15... Moderate Unreviewed

CVE-2026-20997 was published Mar 16, 2026

A weakness has been identified in Totolink A3300R 17.0.0cu.557_b20221024. Affected by this... Moderate Unreviewed

CVE-2026-5177 was published Mar 31, 2026

A security flaw has been discovered in Totolink A3300R 17.0.0cu.557_b20221024. Affected is the... Moderate Unreviewed

CVE-2026-5176 was published Mar 31, 2026

Improper authentication in Smart Switch prior to version 3.7.69.15 allows adjacent attackers to... Moderate Unreviewed

CVE-2026-21004 was published Mar 16, 2026

A vulnerability was identified in code-projects Online Food Ordering System 1.0. Affected is an... Moderate Unreviewed

CVE-2026-5157 was published Mar 31, 2026

A flaw has been found in Tenda CH22 1.0.0.1. The affected element is the function FormWriteFacMac... Moderate Unreviewed

CVE-2026-5153 was published Mar 31, 2026

Exposure of sensitive functionality to an unauthorized actor in Smart Switch prior to version 3.7... Moderate Unreviewed

CVE-2026-20995 was published Mar 16, 2026

A vulnerability was detected in code-projects Accounting System 1.0. Affected by this... Moderate Unreviewed

CVE-2026-5033 was published Mar 29, 2026

MRCMS V3.1.2 contains an unauthenticated directory enumeration vulnerability in the file... Moderate Unreviewed

CVE-2026-29909 was published Mar 30, 2026

Incorrect access control in the file_details.asp endpoint of DDSN Interactive Acora CMS v10.7.1... Moderate Unreviewed

CVE-2026-29597 was published Mar 30, 2026

A vulnerability was detected in Totolink A3600R 4.1.2cu.5182_B20201102. Affected by this issue is... Moderate Unreviewed

CVE-2026-5020 was published Mar 29, 2026

A vulnerability has been found in code-projects Accounting System 1.0. This affects an unknown... Moderate Unreviewed

CVE-2026-5035 was published Mar 29, 2026

A vulnerability has been found in Totolink NR1800X 9.1.0u.6279_B20210910. This issue affects the... Moderate Unreviewed

CVE-2026-5030 was published Mar 29, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

141,506 advisories