Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,153
Maven
5,000+
npm
3,818
NuGet
693
pip
3,492
Pub
12
RubyGems
902
Rust
903
Swift
38
Unreviewed advisories
All unreviewed
5,000+

104,444 advisories

Loading
Authorization Bypass Through User-Controlled Key, Exposure of Private Personal Information to an... High Unreviewed
CVE-2024-11216 was published Mar 5, 2025
The DesignThemes Core Features plugin for WordPress is vulnerable to unauthorized access of data... High Unreviewed
CVE-2024-13471 was published Mar 5, 2025
The WooCommerce Recover Abandoned Cart plugin for WordPress is vulnerable to PHP Object Injection... High Unreviewed
CVE-2025-0956 was published Mar 5, 2025
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction &... High Unreviewed
CVE-2025-1702 was published Mar 5, 2025
The WordPress Awesome Import & Export Plugin - Import & Export WordPress Data plugin for... High Unreviewed
CVE-2024-13232 was published Mar 5, 2025
The ZoomSounds - WordPress Wave Audio Player with Playlist plugin for WordPress is vulnerable to... High Unreviewed
CVE-2024-13777 was published Mar 5, 2025
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923... High Unreviewed
CVE-2025-27669 was published Mar 5, 2025
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.735 Application 20.0.1330... High Unreviewed
CVE-2025-27685 was published Mar 5, 2025
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.735 Application 20.0.1330... High Unreviewed
CVE-2025-27684 was published Mar 5, 2025
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.735 Application 20.0.1330... High Unreviewed
CVE-2025-27683 was published Mar 5, 2025
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923... High Unreviewed
CVE-2025-27664 was published Mar 5, 2025
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.1002 Application 20.0... High Unreviewed
CVE-2025-27639 was published Mar 5, 2025
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.933 Application 20.0.2368... High Unreviewed
CVE-2025-27644 was published Mar 5, 2025
Out of bounds read in PDFium in Google Chrome prior to 134.0.6998.35 allowed a remote attacker to... High Unreviewed
CVE-2025-1918 was published Mar 5, 2025
Use after free in Profiles in Google Chrome prior to 134.0.6998.35 allowed an attacker who... High Unreviewed
CVE-2025-1916 was published Mar 5, 2025
Out of bounds read in Media in Google Chrome prior to 134.0.6998.35 allowed a remote attacker to... High Unreviewed
CVE-2025-1919 was published Mar 5, 2025
Improper Limitation of a Pathname to a Restricted Directory in DevTools in Google Chrome on... High Unreviewed
CVE-2025-1915 was published Mar 5, 2025
Out of bounds read in V8 in Google Chrome prior to 134.0.6998.35 allowed a remote attacker to... High Unreviewed
CVE-2025-1914 was published Mar 5, 2025
NVIDIA Hopper HGX for 8-GPU contains a vulnerability in the HGX Management Controller (HMC) that... High Unreviewed
CVE-2024-0114 was published Mar 5, 2025
GMOD Apollo does not have sufficient logical or access checks when updating a user's information.... High Unreviewed
CVE-2025-21092 was published Mar 5, 2025
FlowiseAI Flowise arbitrary file upload vulnerability High
CVE-2025-26319 was published for flowise (npm) Mar 5, 2025
yshopmall <=v1.9.0 is vulnerable to SQL Injection in the image listing interface. High Unreviewed
CVE-2025-25426 was published Mar 5, 2025
LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS... High Unreviewed
CVE-2025-1080 was published Mar 4, 2025
On affected platforms running Arista EOS with OpenConfig configured, a gNOI request can be run... High Unreviewed
CVE-2025-1259 was published Mar 4, 2025
A vulnerability regarding improper neutralization of special elements used in an OS command ('OS... High Unreviewed
CVE-2024-39351 was published Mar 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database