Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,950
Maven
5,000+
npm
4,596
NuGet
787
pip
4,301
Pub
12
RubyGems
982
Rust
1,121
Swift
49
Unreviewed advisories
All unreviewed
5,000+

149,480 advisories

Loading
A vulnerability was found in SourceCodester Online Class Record System 1.0. This vulnerability... Moderate Unreviewed
CVE-2026-2089 was published Feb 7, 2026
A vulnerability has been found in PHPGurukul Beauty Parlour Management System 1.1. This affects... Moderate Unreviewed
CVE-2026-2088 was published Feb 7, 2026
A flaw has been found in SourceCodester Online Class Record System 1.0. Affected by this issue is... Moderate Unreviewed
CVE-2026-2087 was published Feb 7, 2026
A security flaw has been discovered in code-projects Social Networking Site 1.0. This affects an... Moderate Unreviewed
CVE-2026-2083 was published Feb 7, 2026
A vulnerability was identified in D-Link DIR-823X 250416. The impacted element is an unknown... Moderate Unreviewed
CVE-2026-2082 was published Feb 7, 2026
A vulnerability was determined in D-Link DIR-823X 250416. The affected element is an unknown... Moderate Unreviewed
CVE-2026-2081 was published Feb 7, 2026
A vulnerability was detected in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4.... Moderate Unreviewed
CVE-2026-2078 was published Feb 7, 2026
The TITLE ANIMATOR plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed
CVE-2026-1082 was published Feb 7, 2026
The OMIGO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ... Moderate Unreviewed
CVE-2026-1573 was published Feb 7, 2026
The Subitem AL Slider plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via... Moderate Unreviewed
CVE-2026-1634 was published Feb 7, 2026
The Simple Bible Verse via Shortcode plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2026-1570 was published Feb 7, 2026
The The Bucketlister plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed
CVE-2025-15476 was published Feb 7, 2026
The Advanced Country Blocker plugin for WordPress is vulnerable to Authorization Bypass in all... Moderate Unreviewed
CVE-2026-1675 was published Feb 7, 2026
The Premmerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2026-0555 was published Feb 7, 2026
The Wonka Slide plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed
CVE-2026-1613 was published Feb 7, 2026
The Bucketlister plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode ... Moderate Unreviewed
CVE-2025-15477 was published Feb 7, 2026
The MP-Ukagaka plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in all... Moderate Unreviewed
CVE-2026-1643 was published Feb 7, 2026
The Video Onclick plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2026-1608 was published Feb 7, 2026
A flaw has been found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This... Moderate Unreviewed
CVE-2026-2079 was published Feb 7, 2026
The Wikiloops Track Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2026-1611 was published Feb 7, 2026
A security vulnerability has been detected in yeqifu warehouse up to... Moderate Unreviewed
CVE-2026-2077 was published Feb 7, 2026
A weakness has been identified in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4... Moderate Unreviewed
CVE-2026-2076 was published Feb 7, 2026
The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2025-12803 was published Feb 7, 2026
A vulnerability was determined in itsourcecode School Management System 1.0. This affects an... Moderate Unreviewed
CVE-2026-2073 was published Feb 7, 2026
The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2025-12159 was published Feb 7, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database