GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
338 advisories
Filter by severity
Exposure of sensitive system information to an unauthorized control sphere in Windows Kernel...
Moderate
Unreviewed
CVE-2026-50294
was published
Jul 14, 2026
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2026-61976
was published
Jul 13, 2026
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2026-61975
was published
Jul 13, 2026
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2026-61977
was published
Jul 13, 2026
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2026-57393
was published
Jul 13, 2026
Prog
Management System developed by PROG MIS has a Exposure of Sensitive
Information...
Critical
Unreviewed
CVE-2026-14808
was published
Jul 6, 2026
The Azure Blob Storage container used for Gardyn device logs is publicly listable without...
Moderate
Unreviewed
CVE-2026-55726
was published
Jul 3, 2026
Unauthenticated Sensitive Data Exposure in Kit (formerly ConvertKit) for WooCommerce <= 2.1.5...
Moderate
Unreviewed
CVE-2026-57753
was published
Jul 2, 2026
Unauthenticated Sensitive Data Exposure in Bopo – WooCommerce Product Bundle Builder <= 1.1.6...
Moderate
Unreviewed
CVE-2026-57664
was published
Jun 26, 2026
Subscriber Sensitive Data Exposure in GetGenie <= 4.4.2 versions.
Moderate
Unreviewed
CVE-2026-57316
was published
Jun 26, 2026
Unauthenticated Sensitive Data Exposure in WCBoost – Products Compare <= 1.1.0 versions.
Moderate
Unreviewed
CVE-2026-57633
was published
Jun 26, 2026
Unauthenticated Sensitive Data Exposure in Print Invoice & Delivery Notes for WooCommerce <= 7.1...
High
Unreviewed
CVE-2026-56060
was published
Jun 26, 2026
Unauthenticated Sensitive Data Exposure in Ads by WPQuads <= 3.0.3 versions.
High
Unreviewed
CVE-2026-54824
was published
Jun 26, 2026
A sensitive information disclosure security issue exists within the affected CompactLogix...
Moderate
Unreviewed
CVE-2026-9307
was published
Jun 16, 2026
Unauthenticated Sensitive Data Exposure in Signature Add-On for WooCommerce <= 2.0 versions.
High
Unreviewed
CVE-2026-52694
was published
Jun 15, 2026
Unauthenticated Sensitive Data Exposure in WooCommerce PDF Invoices, Packing Slips, Delivery...
High
Unreviewed
CVE-2026-49056
was published
Jun 15, 2026
Unauthenticated Sensitive Data Exposure in Conekta Payment Gateway <= 6.0.0 versions.
High
Unreviewed
CVE-2026-49066
was published
Jun 15, 2026
Subscriber Sensitive Data Exposure in Coupon Affiliates <= 7.8.1 versions.
High
Unreviewed
CVE-2026-49068
was published
Jun 15, 2026
Subscriber Sensitive Data Exposure in Visual Link Preview <= 2.4.1 versions.
Moderate
Unreviewed
CVE-2026-48878
was published
Jun 15, 2026
Subscriber Sensitive Data Exposure in Contest Gallery <= 28.1.7 versions.
Moderate
Unreviewed
CVE-2026-42660
was published
Jun 15, 2026
Subscriber Sensitive Data Exposure in WPPizza <= 3.19.9 versions.
Moderate
Unreviewed
CVE-2026-40796
was published
Jun 15, 2026
Unauthenticated Sensitive Data Exposure in IDPay Payment Gateway for Woocommerce <= 2.2.5 versions.
High
Unreviewed
CVE-2026-34891
was published
Jun 15, 2026
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in...
Moderate
Unreviewed
CVE-2026-24618
was published
Jun 12, 2026
Improper access control in AMD uProf may allow a local attacker with user privileges to write to...
Moderate
Unreviewed
CVE-2026-0466
was published
Jun 9, 2026
Under certain conditions, when an unauthorized attacker accesses a specific endpoint, SAP...
Low
Unreviewed
CVE-2026-44743
was published
Jun 9, 2026
ProTip!
Advisories are also available from the
GraphQL API