Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,867
Maven
5,000+
npm
4,488
NuGet
780
pip
4,244
Pub
12
RubyGems
975
Rust
1,096
Swift
49
Unreviewed advisories
All unreviewed
5,000+

148,438 advisories

Loading
A weakness has been identified in GPAC up to 2.4.0. Affected by this issue is the function... Moderate Unreviewed
CVE-2026-1417 was published Jan 26, 2026
A security flaw has been discovered in GPAC up to 2.4.0. Affected by this vulnerability is the... Moderate Unreviewed
CVE-2026-1416 was published Jan 26, 2026
A security vulnerability has been detected in GPAC up to 2.4.0. This affects the function... Moderate Unreviewed
CVE-2026-1418 was published Jan 26, 2026
A vulnerability has been found in code-projects Online Examination System 1.0. Affected is an... Moderate Unreviewed
CVE-2026-1421 was published Jan 26, 2026
A weakness has been identified in D-Link DCS700l 1.03.09. Affected is an unknown function of the... Moderate Unreviewed
CVE-2026-1419 was published Jan 26, 2026
A vulnerability was determined in Sangfor Operation and Maintenance Security Management System up... Moderate Unreviewed
CVE-2026-1414 was published Jan 26, 2026
A vulnerability was identified in GPAC up to 2.4.0. Affected is the function... Moderate Unreviewed
CVE-2026-1415 was published Jan 26, 2026
A vulnerability was detected in Beetel 777VR1 up to 01.00.09/01.00.09_55. Impacted is an unknown... Moderate Unreviewed
CVE-2026-1410 was published Jan 26, 2026
A vulnerability has been found in Sangfor Operation and Maintenance Security Management System up... Moderate Unreviewed
CVE-2026-1412 was published Jan 26, 2026
A vulnerability was found in Sangfor Operation and Maintenance Security Management System up to 3... Moderate Unreviewed
CVE-2026-1413 was published Jan 26, 2026
A flaw has been found in Beetel 777VR1 up to 01.00.09/01.00.09_55. The affected element is an... Moderate Unreviewed
CVE-2026-1411 was published Jan 26, 2026
SeaCMS 11.1 contains a stored cross-site scripting vulnerability in the checkuser parameter of... Moderate Unreviewed
CVE-2020-36932 was published Jan 25, 2026
Click2Magic 1.1.5 contains a stored cross-site scripting vulnerability that allows attackers to... Moderate Unreviewed
CVE-2020-36931 was published Jan 25, 2026
A vulnerability was determined in lcg0124 BootDo up to 5ccd963c74058036b466e038cff37de4056c1600.... Moderate Unreviewed
CVE-2026-1406 was published Jan 25, 2026
Directory Traversal vulnerability in Beam beta9 v.0.1.552 allows a remote attacker to obtain... Moderate Unreviewed
CVE-2025-69820 was published Jan 22, 2026
The CubeWP – All-in-One Dynamic Content Framework plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-6461 was published Jan 25, 2026
Tendenci Affected by Authenticated Remote Code Execution via Pickle Deserialization Moderate
CVE-2026-23946 was published for tendenci (pip) Jan 21, 2026
nedlir
Credited to nedlir
The Save as PDF Plugin by PDFCrowd plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed
CVE-2026-0862 was published Jan 24, 2026
The WP Go Maps (formerly WP Google Maps) plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2026-0593 was published Jan 24, 2026
The WP Directory Kit plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2025-13920 was published Jan 24, 2026
The Responsive Header plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2026-1300 was published Jan 24, 2026
The SurveyJS: Drag & Drop WordPress Form Builder plugin for WordPress is vulnerable to Cross-Site... Moderate Unreviewed
CVE-2025-13139 was published Jan 24, 2026
The SurveyJS: Drag & Drop WordPress Form Builder to create, style and embed multiple forms of any... Moderate Unreviewed
CVE-2025-13205 was published Jan 24, 2026
The Moderate Selected Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in... Moderate Unreviewed
CVE-2025-14907 was published Jan 24, 2026
The GZSEO plugin for WordPress is vulnerable to authorization bypass leading to Stored Cross-Site... Moderate Unreviewed
CVE-2025-14941 was published Jan 24, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database