Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

31,061 advisories

Loading
A vulnerability, which was classified as problematic, was found in CampCodes School Management... Moderate Unreviewed
CVE-2025-0560 was published Jan 18, 2025
A vulnerability, which was classified as problematic, has been found in Campcodes School... Moderate Unreviewed
CVE-2025-0559 was published Jan 18, 2025
A vulnerability, which was classified as problematic, has been found in code-projects Car Rental... Moderate Unreviewed
CVE-2025-0537 was published Jan 17, 2025
A vulnerability, which was classified as problematic, was found in code-projects Tourism... Moderate Unreviewed
CVE-2025-0538 was published Jan 17, 2025
The Easy Digital Downloads – eCommerce Payments and Subscriptions made easy plugin for WordPress... Moderate Unreviewed
CVE-2024-13517 was published Jan 18, 2025
The MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Tokens Wallet... Moderate Unreviewed
CVE-2024-13391 was published Jan 18, 2025
The JSM Screenshot Machine Shortcode plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-13385 was published Jan 18, 2025
The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-13393 was published Jan 18, 2025
The Utilities for MTG plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-13433 was published Jan 18, 2025
The JetEngine plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘list_tag... Moderate Unreviewed
CVE-2025-0369 was published Jan 18, 2025
A vulnerability classified as problematic has been found in Hyland Alfresco Community Edition and... Moderate Unreviewed
CVE-2025-0557 was published Jan 18, 2025
The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is... Moderate Unreviewed
CVE-2024-13519 was published Jan 18, 2025
The Picture Gallery – Frontend Image Uploads, AJAX Photo List plugin for WordPress is vulnerable... Moderate Unreviewed
CVE-2024-12696 was published Jan 18, 2025
The Rate Star Review Vote – AJAX Reviews, Votes, Star Ratings plugin for WordPress is vulnerable... Moderate Unreviewed
CVE-2024-13392 was published Jan 18, 2025
The Podlove Podcast Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2025-0554 was published Jan 18, 2025
The Kubio AI Page Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting... Moderate Unreviewed
CVE-2024-13516 was published Jan 18, 2025
The Image Source Control Lite – Show Image Credits and Captions plugin for WordPress is... Moderate Unreviewed
CVE-2024-13515 was published Jan 18, 2025
Cross Site Scripting vulnerability in InformationPush master version allows a remote attacker to... Moderate Unreviewed
CVE-2024-57372 was published Jan 17, 2025
The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to... High Unreviewed
CVE-2024-11916 was published Jan 8, 2025
The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-1392 was published Mar 13, 2024
The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-1391 was published Mar 13, 2024
The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-1393 was published Mar 13, 2024
The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-1422 was published Mar 13, 2024
The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-2042 was published Mar 16, 2024
The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-2539 was published Apr 10, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database