GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,886
Composer 5,194
Erlang 40
GitHub Actions 38
Go 2,930
Maven 6,243
npm 4,587
NuGet 786
pip 4,294
Pub 12
RubyGems 981
Rust 1,114
Swift 49

Unreviewed advisories

All unreviewed 288,464

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

6,225 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Missing Authorization vulnerability in Nelio Software Nelio Popups nelio-popups allows Exploiting... Moderate Unreviewed

CVE-2026-25016 was published Feb 3, 2026

Missing Authorization vulnerability in Element Invader ElementInvader Addons for Elementor... Moderate Unreviewed

CVE-2026-25028 was published Feb 3, 2026

Missing Authorization vulnerability in gfazioli WP Bannerize Pro wp-bannerize-pro allows... Moderate Unreviewed

CVE-2026-25012 was published Feb 3, 2026

Missing Authorization vulnerability in Fahad Mahmood WP Docs wp-docs allows Exploiting... Moderate Unreviewed

CVE-2026-24990 was published Feb 3, 2026

Missing Authorization vulnerability in approveme WP Forms Signature Contract Add-On wp-forms... Moderate Unreviewed

CVE-2026-24985 was published Feb 3, 2026

Missing Authorization vulnerability in Iulia Cazan Latest Post Shortcode latest-post-shortcode... Moderate Unreviewed

CVE-2026-24995 was published Feb 3, 2026

Missing Authorization vulnerability in wpelemento WPElemento Importer wpelemento-importer allows... Moderate Unreviewed

CVE-2026-24996 was published Feb 3, 2026

Missing Authorization vulnerability in Wired Impact Wired Impact Volunteer Management wired... Moderate Unreviewed

CVE-2026-24997 was published Feb 3, 2026

Missing Authorization vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart... Moderate Unreviewed

CVE-2026-24994 was published Feb 3, 2026

Missing Authorization vulnerability in Saad Iqbal myCred mycred allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2026-24951 was published Feb 3, 2026

Missing Authorization vulnerability in Wasiliy Strecker / ContestGallery developer Contest... Moderate Unreviewed

CVE-2026-24965 was published Feb 3, 2026

Missing Authorization vulnerability in Brecht Visual Link Preview visual-link-preview allows... Unknown Unreviewed

CVE-2026-24984 was published Feb 3, 2026

Missing Authorization vulnerability in ameliabooking Amelia ameliabooking allows Exploiting... Moderate Unreviewed

CVE-2026-24967 was published Feb 3, 2026

Missing Authorization vulnerability in WP Chill Strong Testimonials strong-testimonials allows... Moderate Unreviewed

CVE-2026-24957 was published Feb 3, 2026

Missing Authorization vulnerability in Brainstorm Force Spectra ultimate-addons-for-gutenberg... Moderate Unreviewed

CVE-2026-24982 was published Feb 3, 2026

Missing Authorization vulnerability in Themefic Travelfic Toolkit travelfic-toolkit allows... Moderate Unreviewed

CVE-2026-24940 was published Feb 3, 2026

Missing Authorization vulnerability in WP Chill Modula Image Gallery modula-best-grid-gallery... Moderate Unreviewed

CVE-2026-24939 was published Feb 3, 2026

Missing Authorization vulnerability in LA-Studio LA-Studio Element Kit for Elementor lastudio... Moderate Unreviewed

CVE-2026-24947 was published Feb 3, 2026

Missing Authorization vulnerability in Themefic Ultimate Addons for Contact Form 7 ultimate... Moderate Unreviewed

CVE-2026-24945 was published Feb 3, 2026

Khoj has an IDOR in Notion OAuth Flow that Enables Index Poisoning Moderate

CVE-2025-69207 was published for khoj (pip) Feb 2, 2026

Credited to Cillian-Collins

A vulnerability has been discovered in GitLab CE/EE affecting all versions starting with 16.8... Low Unreviewed

CVE-2026-1751 was published Feb 2, 2026

An improper access control vulnerability exists in ASUS Secure Delete Driver of ASUS Business... High Unreviewed

CVE-2025-13348 was published Feb 2, 2026

A security flaw has been discovered in Zhong Bang CRMEB up to 5.6.3. This vulnerability affects... Moderate Unreviewed

CVE-2026-1734 was published Feb 2, 2026

The Booking Calendar plugin for WordPress is vulnerable to unauthorized access of data due to a... Moderate Unreviewed

CVE-2026-1431 was published Jan 31, 2026

The NEX-Forms – Ultimate Forms Plugin for WordPress is vulnerable to unauthorized access of data... Moderate Unreviewed

CVE-2025-15510 was published Jan 31, 2026

Previous 12…249 Next

Previous 1 2 3 4 5 … 248 249 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,225 advisories