GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,328
Composer 5,119
Erlang 40
GitHub Actions 38
Go 2,800
Maven 6,196
npm 4,426
NuGet 773
pip 4,199
Pub 12
RubyGems 968
Rust 1,086
Swift 47

Unreviewed advisories

All unreviewed 284,970

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

284,970 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Successful exploitation of the SQL injection vulnerability could allow an unauthenticated remote... Critical Unreviewed

CVE-2025-52694 was published Jan 12, 2026

A security flaw has been discovered in code-projects Online Music Site 1.0. The impacted element... Moderate Unreviewed

CVE-2026-0852 was published Jan 12, 2026

A vulnerability was determined in code-projects Intern Membership Management System 1.0. Impacted... Moderate Unreviewed

CVE-2026-0850 was published Jan 12, 2026

A vulnerability was identified in code-projects Online Music Site 1.0. The affected element is an... Moderate Unreviewed

CVE-2026-0851 was published Jan 12, 2026

Missing XML Validation vulnerability in Apache Struts, Apache Struts. This issue affects Apache... Unknown Unreviewed

CVE-2025-68493 was published Jan 11, 2026

A vulnerability was found in AcademySoftwareFoundation OpenColorIO up to 2.5.0. This issue... Moderate Unreviewed

CVE-2025-15506 was published Jan 11, 2026

A vulnerability has been found in jiujiujia/victor123/wxw850227 jjjfood and jjjshop_food up to... Moderate Unreviewed

CVE-2026-0843 was published Jan 11, 2026

A security vulnerability has been detected in UTT 进取 520W 1.7.7-180627. Affected by this... High Unreviewed

CVE-2026-0840 was published Jan 11, 2026

A vulnerability was detected in UTT 进取 520W 1.7.7-180627. Affected by this issue is the function... High Unreviewed

CVE-2026-0841 was published Jan 11, 2026

A flaw has been found in Flycatcher Toys smART Sketcher up to 2.0. This affects an unknown part... Moderate Unreviewed

CVE-2026-0842 was published Jan 11, 2026

A weakness has been identified in UTT 进取 520W 1.7.7-180627. Affected is the function strcpy of... High Unreviewed

CVE-2026-0839 was published Jan 11, 2026

A vulnerability was identified in UTT 进取 520W 1.7.7-180627. This affects the function strcpy of... High Unreviewed

CVE-2026-0837 was published Jan 11, 2026

A vulnerability was determined in UTT 进取 520W 1.7.7-180627. The impacted element is the function... High Unreviewed

CVE-2026-0836 was published Jan 11, 2026

A security flaw has been discovered in UTT 进取 520W 1.7.7-180627. This impacts the function strcpy... High Unreviewed

CVE-2026-0838 was published Jan 11, 2026

A vulnerability was found in Luxul XWR-600 up to 4.0.1. The affected element is an unknown... Moderate Unreviewed

CVE-2025-15505 was published Jan 11, 2026

The Countdown Timer – Widget Countdown plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-14555 was published Jan 10, 2026

The Featured Image from URL (FIFU) plugin for WordPress is vulnerable to Server-Side Request... Moderate Unreviewed

CVE-2025-13393 was published Jan 10, 2026

The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to Stored... Moderate Unreviewed

CVE-2025-12379 was published Jan 10, 2026

A vulnerability was determined in quickjs-ng quickjs up to 0.11.0. This vulnerability affects the... Moderate Unreviewed

CVE-2026-0821 was published Jan 10, 2026

A vulnerability was identified in quickjs-ng quickjs up to 0.11.0. This issue affects the... Moderate Unreviewed

CVE-2026-0822 was published Jan 10, 2026

A security flaw has been discovered in questdb ui up to 1.11.9. Impacted is an unknown function... Moderate Unreviewed

CVE-2026-0824 was published Jan 10, 2026

The Templately plugin for WordPress is vulnerable to Arbitrary File Write in all versions up to,... Moderate Unreviewed

CVE-2026-0831 was published Jan 10, 2026

NULL Pointer Dereference vulnerability in Apache Nimble. Missing validation of HCI connection... Unknown Unreviewed

CVE-2025-53477 was published Jan 10, 2026

A security flaw has been discovered in lief-project LIEF up to 0.17.1. Affected by this issue is... Moderate Unreviewed

CVE-2025-15504 was published Jan 10, 2026

The ConvertForce Popup Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-14506 was published Jan 10, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

284,970 advisories