GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,259
Composer 4,354
Erlang 31
GitHub Actions 22
Go 2,120
Maven 5,293
npm 3,779
NuGet 681
pip 3,460
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,852

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

114,021 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability classified as problematic has been found in newbee-mall 1.0. Affected is the... Moderate Unreviewed

CVE-2025-1114 was published Feb 8, 2025

A vulnerability was found in taisan tarzan-cms up to 1.0.0. It has been rated as critical. This... Moderate Unreviewed

CVE-2025-1113 was published Feb 8, 2025

A reflected Cross-Site Scripting (XSS) vulnerability exists in /webscan/sqlmap/index.html in... Moderate Unreviewed

CVE-2024-57278 was published Feb 8, 2025

A reflected Cross-Site Scripting (XSS) vulnerability has been identified in the LDAP User Manager... Moderate Unreviewed

CVE-2024-57279 was published Feb 8, 2025

An error when handling authorization related to the import / export interfaces on the RISC... Moderate Unreviewed

CVE-2021-41528 was published Feb 7, 2025

A vulnerability classified as critical has been found in CmsEasy 7.7.7.9. This affects the... Moderate Unreviewed

CVE-2025-1106 was published Feb 7, 2025

Utilization of a module presented a security risk by allowing the deserialization of untrusted... Moderate Unreviewed

CVE-2021-27017 was published Feb 7, 2025

A vulnerability has been found in D-Link DHP-W310AV 1.04 and classified as critical. This... Moderate Unreviewed

CVE-2025-1104 was published Feb 7, 2025

A use of hard-coded password vulnerability may allow authentication abuse.This issue affects ELI... Moderate Unreviewed

CVE-2022-26388 was published Feb 7, 2025

A vulnerability was found in SiberianCMS 4.20.6. It has been rated as problematic. Affected by... Moderate Unreviewed

CVE-2025-1105 was published Feb 7, 2025

The WP All Import Pro plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2024-9661 was published Feb 7, 2025

The WP ALL Export Pro plugin for WordPress is vulnerable to unauthorized modification of data... Moderate Unreviewed

CVE-2024-7425 was published Feb 7, 2025

The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is... Moderate Unreviewed

CVE-2024-10785 was published Feb 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in saleandro Songkick Concerts and Festivals... Moderate Unreviewed

CVE-2025-25146 was published Feb 7, 2025

Missing Authorization vulnerability in Melodic Media Slide Banners allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-25120 was published Feb 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in jordan.hatch Infusionsoft Analytics allows... Moderate Unreviewed

CVE-2025-25145 was published Feb 7, 2025

Missing Authorization vulnerability in Metagauss Event Kikfyre allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-25110 was published Feb 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in ibasit GlobalQuran allows Cross Site Request... Moderate Unreviewed

CVE-2025-25143 was published Feb 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in WP Spell Check WP Spell Check allows Cross... Moderate Unreviewed

CVE-2025-25111 was published Feb 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in bnielsen Indeed API allows Cross Site Request... Moderate Unreviewed

CVE-2025-25103 was published Feb 7, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-25136 was published Feb 7, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-25117 was published Feb 7, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-25079 was published Feb 7, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-25094 was published Feb 7, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-25080 was published Feb 7, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

114,021 advisories