GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 31,640
Composer 5,981
Erlang 73
GitHub Actions 53
Go 4,004
Maven 6,654
npm 6,465
NuGet 975
pip 5,329
Pub 13
RubyGems 1,069
Rust 1,395
Swift 61

Unreviewed advisories

All unreviewed 308,244

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

308,244 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Static Block plugin for WordPress is vulnerable to Insecure Direct Object Reference in all... Moderate Unreviewed

CVE-2026-10780 was published Jun 16, 2026

The Video Conferencing with Zoom plugin for WordPress is vulnerable to authorization bypass in... Moderate Unreviewed

CVE-2026-6964 was published Jun 16, 2026

The WP Review Slider Pro plugin for WordPress is vulnerable to SQL Injection via the 'stypes' and... High Unreviewed

CVE-2026-8443 was published Jun 16, 2026

Incorrect default permissions issue exists in Optical Disc Archive Software for Windows 5.5.3 and... Moderate Unreviewed

CVE-2026-50255 was published Jun 16, 2026

Nokia SR Linux is vulnerable to local privilege escalation vulnerability due to unsanitized... Unknown Unreviewed

CVE-2025-10262 was published Jun 16, 2026

The Premmerce Dev Tools plugin for WordPress is vulnerable to Remote Code Execution via missing... High Unreviewed

CVE-2026-6933 was published Jun 16, 2026

The Abandoned Contact Form 7 plugin for WordPress is vulnerable to unauthorized arbitrary post... Moderate Unreviewed

CVE-2026-9187 was published Jun 16, 2026

The RTMKit plugin for WordPress is vulnerable to Incorrect Authorization in all versions up to,... Moderate Unreviewed

CVE-2026-5149 was published Jun 16, 2026

A stack-based buffer overflow vulnerability in the CGI program of Zyxel GS1900-48HPv2 firmware... High Unreviewed

CVE-2026-7273 was published Jun 16, 2026

A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor,... Moderate Unreviewed

CVE-2026-1766 was published Jun 16, 2026

Improper host validation in the social login autofill feature in Devolutions Remote Desktop... Unknown Unreviewed

CVE-2026-12162 was published Jun 16, 2026

A flaw was found in GnuTLS. The `gnutls_pkcs11_token_set_pin` function, used for changing the... Moderate Unreviewed

CVE-2026-42014 was published Jun 16, 2026

A flaw was found in the GNOME localsearch (previously known as tracker-miners) MP3 Extractor ... Moderate Unreviewed

CVE-2026-1767 was published Jun 16, 2026

A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor. When... Moderate Unreviewed

CVE-2026-1764 was published Jun 16, 2026

A flaw was found in the `tracker-extract-mp3` component of GNOME localsearch (previously known as... Moderate Unreviewed

CVE-2026-1765 was published Jun 16, 2026

Improper input validation in the SSH Elevate Shell feature in Devolutions Remote Desktop Manager... Unknown Unreviewed

CVE-2026-12161 was published Jun 16, 2026

Use of weak SSH cryptographic algorithms in Canon EOS Network Setting Tool Version 1.5.0 or earlier High Unreviewed

CVE-2026-9261 was published Jun 16, 2026

Use of a non-secure protocol as the default FTP configuration in Canon EOS Network Setting Tool... High Unreviewed

CVE-2026-9262 was published Jun 16, 2026

Use of hard-coded cryptographic keys in Canon EOS Network Setting Tool Version 1.5.0 or earlier Moderate Unreviewed

CVE-2026-9260 was published Jun 16, 2026

Dancer2::Plugin::Auth::OAuth versions before 0.22 for Perl default to a predictable nonce. The... Unknown Unreviewed

CVE-2026-11832 was published Jun 16, 2026

Socket versions before 2.041 for Perl have an out-of-bounds heap read. In Socket.xs,... Unknown Unreviewed

CVE-2026-12087 was published Jun 16, 2026

Potential security vulnerabilities have been identified in the HP One Agent for certain HP PC... High Unreviewed

CVE-2026-5064 was published Jun 16, 2026

Improper validation of SSH host keys in Canon EOS Network Setting Tool Version 1.5.0 or earlier High Unreviewed

CVE-2026-9258 was published Jun 16, 2026

Improper validation of server certificates in Canon EOS Network Setting Tool Version 1.5.0 or... High Unreviewed

CVE-2026-9259 was published Jun 16, 2026

Crypt::DSA versions before 1.21 for Perl reused the nonce across signatures, leading to private... Unknown Unreviewed

CVE-2026-12205 was published Jun 16, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

308,244 advisories