Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
42
GitHub Actions
43
Go
3,164
Maven
5,000+
npm
5,000+
NuGet
863
pip
4,458
Pub
12
RubyGems
991
Rust
1,184
Swift
50
Unreviewed advisories
All unreviewed
5,000+

120,704 advisories

Loading
The Appointment Booking Calendar — Simply Schedule Appointments plugin for WordPress is... High Unreviewed
CVE-2026-3045 was published Mar 13, 2026
Use of Hard-coded Credentials vulnerability in Avantra allows Accessing Functionality Not... High Unreviewed
CVE-2026-3873 was published Mar 13, 2026
A broken access control may allow an authenticated user to perform a horizontal privilege... High Unreviewed
CVE-2026-3999 was published Mar 13, 2026
A flaw was identified in the RAR5 archive decompression logic of the libarchive library,... High Unreviewed
CVE-2026-4111 was published Mar 13, 2026
Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.75 allowed a remote... High Unreviewed
CVE-2026-3910 was published Mar 13, 2026
Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to... High Unreviewed
CVE-2026-3909 was published Mar 13, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2026-32459 was published Mar 13, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2026-32422 was published Mar 13, 2026
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed
CVE-2026-32426 was published Mar 13, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2026-32433 was published Mar 13, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2026-32458 was published Mar 13, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2026-32399 was published Mar 13, 2026
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed
CVE-2026-32400 was published Mar 13, 2026
Improper Control of Generation of Code ('Code Injection') vulnerability in ILLID Advanced Woo... High Unreviewed
CVE-2026-32414 was published Mar 13, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2026-32418 was published Mar 13, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2026-32358 was published Mar 13, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2026-32366 was published Mar 13, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2026-32368 was published Mar 13, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2026-31917 was published Mar 13, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2026-31922 was published Mar 13, 2026
The Formidable Forms plugin for WordPress is vulnerable to a payment integrity bypass in all... High Unreviewed
CVE-2026-2890 was published Mar 13, 2026
Anchore Enterprise versions before 5.25.1 contain an SQL injection vulnerability in the GraphQL... High Unreviewed
CVE-2026-25076 was published Mar 13, 2026
The web interface on multiple Omada switches does not adequately validate certain external inputs... High Unreviewed
CVE-2026-1668 was published Mar 13, 2026
There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted... High Unreviewed
CVE-2026-0957 was published Mar 13, 2026
HMS Networks Ewon Flexy with firmware before 15.0s4, Cosy+ with firmware 22.xx before 22.1s6, and... High Unreviewed
CVE-2026-25819 was published Mar 13, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database