Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,435
Maven
5,000+
npm
5,000+
NuGet
883
pip
4,689
Pub
13
RubyGems
1,029
Rust
1,212
Swift
53
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

112,396 advisories

Loading
The Booking for Appointments and Events Calendar – Amelia plugin for WordPress is vulnerable to... High Unreviewed
CVE-2026-5465 was published Apr 7, 2026
Cross-Site Request Forgery (CSRF) vulnerability in Analytify Simple Social Media Share Buttons... High Unreviewed
CVE-2026-34904 was published Apr 7, 2026
Cross-Site Request Forgery (CSRF) vulnerability in Analytify Under Construction, Coming Soon &... High Unreviewed
CVE-2026-34896 was published Apr 7, 2026
Improper Input Validation, Improper Control of Generation of Code ('Code Injection')... High Unreviewed
CVE-2026-34197 was published Apr 7, 2026
Remote Code Execution Vulnerability in JP1/IT Desktop Management 2 - Manager on Windows, JP1/IT... High Unreviewed
CVE-2025-65115 was published Apr 7, 2026
In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead... High Unreviewed
CVE-2026-20433 was published Apr 7, 2026
In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead... High Unreviewed
CVE-2026-20432 was published Apr 7, 2026
A security flaw has been discovered in Tenda CX12L 16.03.53.12. This vulnerability affects the... High Unreviewed
CVE-2026-5686 was published Apr 7, 2026
A vulnerability was identified in Tenda CX12L 16.03.53.12. This affects the function... High Unreviewed
CVE-2026-5685 was published Apr 7, 2026
Unsanitized input in the FileBrowser API in AWS Research and Engineering Studio (RES) version... High Unreviewed
CVE-2026-5709 was published Apr 7, 2026
Unsanitized control of user-modifiable attributes in the session creation component in AWS... High Unreviewed
CVE-2026-5708 was published Apr 7, 2026
Unsanitized input in an OS command in the virtual desktop session name handling in AWS Research... High Unreviewed
CVE-2026-5707 was published Apr 7, 2026
A weakness has been identified in Tenda CX12L 16.03.53.12. This issue affects the function... High Unreviewed
CVE-2026-5687 was published Apr 7, 2026
A vulnerability was determined in Tenda CX12L 16.03.53.12. Affected by this issue is the function... High Unreviewed
CVE-2026-5684 was published Apr 7, 2026
An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor amd Wearable Processor... High Unreviewed
CVE-2025-54601 was published Apr 6, 2026
An issue was discovered in NAS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos... High Unreviewed
CVE-2025-54324 was published Apr 6, 2026
An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor... High Unreviewed
CVE-2025-54602 was published Apr 6, 2026
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem (Exynos 980,... High Unreviewed
CVE-2025-57834 was published Apr 6, 2026
Anthropic Claude Code CLI and Claude Agent SDK contain an OS command injection vulnerability in... High Unreviewed
CVE-2026-35021 was published Apr 6, 2026
Anthropic Claude Code CLI and Claude Agent SDK contain an OS command injection vulnerability in... High Unreviewed
CVE-2026-35020 was published Apr 6, 2026
An issue was discovered in RRC in Samsung Mobile Processor, Wearable Processor, and Modem Exynos... High Unreviewed
CVE-2025-57835 was published Apr 6, 2026
An issue was discovered in USIM in Samsung Mobile Processor, Wearable Processor, and Modem Exynos... High Unreviewed
CVE-2025-59440 was published Apr 6, 2026
Memory Corruption when using deprecated DMABUF IOCTL calls to manage video memory. High Unreviewed
CVE-2026-21380 was published Apr 6, 2026
Memory Corruption when accessing an output buffer without validating its size during IOCTL... High Unreviewed
CVE-2026-21378 was published Apr 6, 2026
Memory Corruption when handling power management requests with improperly sized input/output... High Unreviewed
CVE-2026-21382 was published Apr 6, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database