GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,464
Composer 5,137
Erlang 40
GitHub Actions 38
Go 2,831
Maven 6,209
npm 4,462
NuGet 775
pip 4,226
Pub 12
RubyGems 972
Rust 1,093
Swift 47

Unreviewed advisories

All unreviewed 285,981

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

10,131 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The CubeWP – All-in-One Dynamic Content Framework plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-12129 was published Jan 17, 2026

The WP Hotel Booking plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed

CVE-2025-14075 was published Jan 17, 2026

An issue was discovered in Chamillo LMS 1.11.2. The Social Network /personal_data endpoint... High Unreviewed

CVE-2025-69581 was published Jan 16, 2026

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.3... Low Unreviewed

CVE-2025-24090 was published Jan 16, 2026

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.3... Moderate Unreviewed

CVE-2025-24089 was published Jan 16, 2026

Apache Airflow secrets in rendered templates could contain parts of sensitive values when truncated High

CVE-2025-68438 was published for apache-airflow (pip) Jan 16, 2026

The WP Recipe Maker plugin for WordPress is vulnerable to Information Exposure in versions up to,... Moderate Unreviewed

CVE-2025-15527 was published Jan 16, 2026

The application discloses all used components, versions and license information to... Moderate Unreviewed

CVE-2026-22645 was published Jan 15, 2026

Grafana is an open-source platform for monitoring and observability. The Grafana Alerting... Moderate Unreviewed

CVE-2026-22639 was published Jan 15, 2026

An issue in AIRTH SMART HOME AQI MONITOR Bootloader v.1.005 allows a physically proximate... Moderate Unreviewed

CVE-2025-67399 was published Jan 14, 2026

The vulnerability exists in BLUVOYIX due to an improper password storage implementation and... Critical Unreviewed

CVE-2026-22240 was published Jan 14, 2026

The vulnerability exists in BLUVOYIX due to the exposure of sensitive internal API documentation.... Critical Unreviewed

CVE-2026-22237 was published Jan 14, 2026

The LottieFiles – Lottie block for Gutenberg plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed

CVE-2026-0717 was published Jan 14, 2026

The PDF Resume Parser plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed

CVE-2025-14464 was published Jan 14, 2026

Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2025-68965 was published Jan 14, 2026

Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2025-68966 was published Jan 14, 2026

Permission verification bypass vulnerability in the media library module. Impact: Successful... Moderate Unreviewed

CVE-2025-68959 was published Jan 14, 2026

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an... Moderate Unreviewed

CVE-2026-20932 was published Jan 13, 2026

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an... Moderate Unreviewed

CVE-2026-20939 was published Jan 13, 2026

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an... Moderate Unreviewed

CVE-2026-20937 was published Jan 13, 2026

Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized... Moderate Unreviewed

CVE-2026-20847 was published Jan 13, 2026

Exposure of sensitive information to an unauthorized actor in Windows Management Services allows... Moderate Unreviewed

CVE-2026-20862 was published Jan 13, 2026

Exposure of sensitive information to an unauthorized actor in Windows Remote Procedure Call... Moderate Unreviewed

CVE-2026-20821 was published Jan 13, 2026

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an... Moderate Unreviewed

CVE-2026-20823 was published Jan 13, 2026

Exposure of sensitive information to an unauthorized actor in Tablet Windows User Interface ... Moderate Unreviewed

CVE-2026-20827 was published Jan 13, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

10,131 advisories