GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 29,428
Composer 5,654
Erlang 49
GitHub Actions 50
Go 3,606
Maven 6,433
npm 5,910
NuGet 924
pip 4,831
Pub 13
RubyGems 1,045
Rust 1,256
Swift 53

Unreviewed advisories

All unreviewed 299,342

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

261 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The HTTP Headers plugin for WordPress is vulnerable to External Control of File Name or Path... High Unreviewed

CVE-2026-4132 was published Apr 22, 2026

OpenClaw versions 2026.4.7 before 2026.4.15 fail to enforce local-root containment on tool-result... Moderate Unreviewed

CVE-2026-41389 was published Apr 20, 2026

Unisys WebPerfect Image Suite versions 3.0.3960.22810 and 3.0.3960.22604 expose an... High Unreviewed

CVE-2026-39907 was published Apr 15, 2026

The wpForo Forum plugin for WordPress is vulnerable to Arbitrary File Deletion in versions up to... High Unreviewed

CVE-2026-5809 was published Apr 11, 2026

NoMachine External Control of File Path Arbitrary File Deletion Vulnerability. This vulnerability... High Unreviewed

CVE-2026-5053 was published Apr 11, 2026

NoMachine External Control of File Path Local Privilege Escalation Vulnerability. This... High Unreviewed

CVE-2026-5054 was published Apr 11, 2026

Remote Code Execution Vulnerability in JP1/IT Desktop Management 2 - Manager on Windows, JP1/IT... High Unreviewed

CVE-2025-65115 was published Apr 7, 2026

An arbitrary file overwrite vulnerability in Tinybeans Private Family Album App v5.9.5-prod... High Unreviewed

CVE-2026-30289 was published Apr 1, 2026

An arbitrary file overwrite vulnerability in Deep Thought Industries ACE Scanner PDF Scanner v1.4... High Unreviewed

CVE-2026-30287 was published Apr 1, 2026

An arbitrary file overwrite vulnerability in Ora Tools PDF Reader ' Reader & Editor APPv4.3.5... High Unreviewed

CVE-2026-30291 was published Apr 1, 2026

An arbitrary file overwrite vulnerability in Docudepot PDF Reader: PDF Viewer APP v1.0.34 allows... High Unreviewed

CVE-2026-30292 was published Apr 1, 2026

Lack of input validation leads to an arbitrary file deletion vulnerability in the autoupdate... High Unreviewed

CVE-2026-23898 was published Apr 1, 2026

A vulnerability was detected in SourceCodester Leave Application System 1.0. This affects an... Moderate Unreviewed

CVE-2026-5210 was published Mar 31, 2026

An arbitrary file overwrite vulnerability in UXGROUP LLC Voice Recorder v10.0 allows attackers to... High Unreviewed

CVE-2026-30284 was published Mar 31, 2026

An arbitrary file overwrite vulnerability in MaruNuri LLC v2.0.23 allows attackers to overwrite... Critical Unreviewed

CVE-2026-30281 was published Mar 31, 2026

An arbitrary file overwrite vulnerability in DeftPDF Document Translator v54.0 allows attackers... Critical Unreviewed

CVE-2026-30276 was published Mar 31, 2026

A flaw was found in libssh where it can attempt to open arbitrary files during configuration... Low Unreviewed

CVE-2026-0965 was published Mar 26, 2026

AdminExpress 1.2.5 contains a denial of service vulnerability that allows local attackers to... Moderate Unreviewed

CVE-2019-25618 was published Mar 22, 2026

The Task Manager plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to,... Moderate Unreviewed

CVE-2026-2351 was published Mar 21, 2026

IntelBras Telefone IP TIP200 and 200 LITE contain an unauthenticated arbitrary file read... High Unreviewed

CVE-2019-25472 was published Mar 11, 2026

External Control of File Name or Path in the Mail feature of Zoom Workplace for Windows before 6... Critical Unreviewed

CVE-2026-30903 was published Mar 11, 2026

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The affected... Moderate Unreviewed

CVE-2026-25605 was published Mar 10, 2026

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The affected... High Unreviewed

CVE-2026-25573 was published Mar 10, 2026

External control of file name or path in Windows Kernel allows an authorized attacker to elevate... High Unreviewed

CVE-2026-24287 was published Mar 10, 2026

Dell Unisphere for PowerMax, version(s) 10.2, contain(s) an External Control of File Name or Path... High Unreviewed

CVE-2026-26360 was published Feb 19, 2026

Previous1…11 Next

Previous 1 2 3 4 5 … 10 11 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

261 advisories