GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,679
Composer 5,155
Erlang 40
GitHub Actions 38
Go 2,883
Maven 6,234
npm 4,522
NuGet 785
pip 4,262
Pub 12
RubyGems 975
Rust 1,105
Swift 49

Unreviewed advisories

All unreviewed 287,695

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

287,695 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Booking Calendar plugin for WordPress is vulnerable to unauthorized access of data due to a... Moderate Unreviewed

CVE-2026-1431 was published Jan 31, 2026

The SupportCandy – Helpdesk & Customer Support Ticket System plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2026-0683 was published Jan 31, 2026

The Ajax Load More – Infinite Scroll, Load More, & Lazy Load plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2025-15525 was published Jan 31, 2026

The NEX-Forms – Ultimate Forms Plugin for WordPress is vulnerable to unauthorized access of data... Moderate Unreviewed

CVE-2025-15510 was published Jan 31, 2026

Frigate Professional 3.36.0.9 contains a local buffer overflow vulnerability in the 'Find... High Unreviewed

CVE-2020-37042 was published Jan 31, 2026

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute... High Unreviewed

CVE-2020-37040 was published Jan 31, 2026

10-Strike Bandwidth Monitor 3.9 contains a buffer overflow vulnerability that allows attackers to... High Unreviewed

CVE-2020-37043 was published Jan 31, 2026

OpenCTI 3.3.1 is vulnerable to a directory traversal attack via the static/css endpoint. An... High Unreviewed

CVE-2020-37041 was published Jan 31, 2026

Quick Player 1.3 contains a buffer overflow vulnerability that allows attackers to execute... High Unreviewed

CVE-2020-37050 was published Jan 31, 2026

Navigate CMS 2.8.7 contains a cross-site request forgery vulnerability that allows attackers to... Moderate Unreviewed

CVE-2020-37054 was published Jan 31, 2026

Frigate 2.02 contains a denial of service vulnerability that allows attackers to crash the... Moderate Unreviewed

CVE-2020-37039 was published Jan 31, 2026

Frigate 3.36.0.9 contains a local buffer overflow vulnerability in the Command Line input field... High Unreviewed

CVE-2020-37049 was published Jan 31, 2026

Navigate CMS 2.8.7 contains an authenticated SQL injection vulnerability that allows attackers to... High Unreviewed

CVE-2020-37053 was published Jan 31, 2026

Online-Exam-System 2015 contains a time-based blind SQL injection vulnerability in the feedback... High Unreviewed

CVE-2020-37051 was published Jan 31, 2026

Crystal Shard http-protection 0.2.0 contains an IP spoofing vulnerability that allows attackers... Moderate Unreviewed

CVE-2020-37056 was published Jan 31, 2026

AirControl 1.4.2 contains a pre-authentication remote code execution vulnerability that allows... Critical Unreviewed

CVE-2020-37052 was published Jan 31, 2026

Sistem Informasi Pengumuman Kelulusan Online 1.0 contains a cross-site request forgery... Moderate Unreviewed

CVE-2020-37046 was published Jan 31, 2026

OpenCTI 3.3.1 is vulnerable to a reflected cross-site scripting (XSS) attack via the /graphql... Moderate Unreviewed

CVE-2020-37044 was published Jan 31, 2026

Online-Exam-System 2015 contains a SQL injection vulnerability in the feedback module that allows... High Unreviewed

CVE-2020-37057 was published Jan 31, 2026

RM Downloader 2.50.60 contains a local buffer overflow vulnerability in the 'Load' parameter that... High Unreviewed

CVE-2020-37036 was published Jan 31, 2026

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12... Moderate Unreviewed

CVE-2025-36009 was published Jan 31, 2026

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12... Moderate Unreviewed

CVE-2025-36098 was published Jan 31, 2026

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 - 11.5.9 could allow an... Moderate Unreviewed

CVE-2025-36387 was published Jan 31, 2026

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12... Moderate Unreviewed

CVE-2025-36001 was published Jan 31, 2026

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 could allow an... High Unreviewed

CVE-2025-36184 was published Jan 31, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

287,695 advisories