GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,537
Composer 4,454
Erlang 33
GitHub Actions 22
Go 2,153
Maven 5,330
npm 3,818
NuGet 693
pip 3,492
Pub 12
RubyGems 902
Rust 903
Swift 38

Unreviewed advisories

All unreviewed 246,984

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

96,776 advisories

Filter by severity

Sort by

Least recently updated

The VikRentCar Car Rental Management System plugin for WordPress is vulnerable to Cross-Site... High Unreviewed

CVE-2024-11640 was published Mar 8, 2025

The Product Input Fields for WooCommerce plugin for WordPress is vulnerable to arbitrary file... High Unreviewed

CVE-2024-13359 was published Mar 8, 2025

The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to SQL... High Unreviewed

CVE-2025-1323 was published Mar 8, 2025

The miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) Pro Addon plugin... High Unreviewed

CVE-2024-11087 was published Mar 8, 2025

The SMTP by BestWebSoft plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed

CVE-2024-13908 was published Mar 8, 2025

The Aiomatic - Automatic AI Content Writer & Editor, GPT-3 & GPT-4, ChatGPT ChatBot & AI Toolkit... High Unreviewed

CVE-2024-13882 was published Mar 8, 2025

The Post Meta Data Manager plugin for WordPress is vulnerable to multisite privilege escalation... High Unreviewed

CVE-2024-13835 was published Mar 8, 2025

The Allow PHP Execute plugin for WordPress is vulnerable to PHP Code Injection in all versions up... High Unreviewed

CVE-2024-13890 was published Mar 8, 2025

A vulnerability, which was classified as critical, has been found in TOTOLINK EX1800T 9.1.0cu... High Unreviewed

CVE-2025-2097 was published Mar 8, 2025

An issue was discovered in the Masquerade module before 1.x-1.0.1 for Backdrop CMS. It allows... High Unreviewed

CVE-2025-27822 was published Mar 8, 2025

Trimble SketchUp SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability.... High Unreviewed

CVE-2025-2024 was published Mar 7, 2025

In the Linux kernel, the following vulnerability has been resolved: block: Fix handling of... High Unreviewed

CVE-2022-49720 was published Mar 7, 2025

IBM Aspera Shares 1.9.9 through 1.10.0 PL7 is vulnerable to an XML external entity injection (XXE... High Unreviewed

CVE-2025-0162 was published Mar 7, 2025

An improper neutralization of CRLF sequences ('CRLF Injection') vulnerability has been reported... High Unreviewed

CVE-2024-53693 was published Mar 7, 2025

A time-of-check time-of-use (TOCTOU) race condition vulnerability has been reported to affect... High Unreviewed

CVE-2024-53694 was published Mar 7, 2025

An improper certificate validation vulnerability has been reported to affect Helpdesk. If... High Unreviewed

CVE-2024-50394 was published Mar 7, 2025

A command injection vulnerability has been reported to affect QHora. If exploited, the... High Unreviewed

CVE-2024-50390 was published Mar 7, 2025

The WordPress Activity O Meter WordPress plugin through 1.0 does not sanitise and escape a... High Unreviewed

CVE-2024-13668 was published Mar 7, 2025

Pass-Back vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability... High Unreviewed

CVE-2025-1886 was published Mar 7, 2025

SMB forced authentication vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This... High Unreviewed

CVE-2025-1887 was published Mar 7, 2025

The School Management System for Wordpress plugin for WordPress is vulnerable to privilege... High Unreviewed

CVE-2024-9658 was published Mar 7, 2025

The Eventer - WordPress Event & Booking Manager Plugin plugin for WordPress is vulnerable to SQL... High Unreviewed

CVE-2025-0959 was published Mar 7, 2025

The Gallery by BestWebSoft – Customizable Image and Photo Galleries for WordPress plugin for... High Unreviewed

CVE-2024-13906 was published Mar 7, 2025

The Ultimate Video Player WordPress & WooCommerce Plugin plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-10804 was published Mar 7, 2025

The CS Framework plugin for WordPress is vulnerable to arbitrary file deletion due to... High Unreviewed

CVE-2024-12035 was published Mar 7, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

96,776 advisories