GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,936
Composer 4,478
Erlang 33
GitHub Actions 24
Go 2,208
Maven 5,436
npm 3,865
NuGet 696
pip 3,642
Pub 12
RubyGems 913
Rust 919
Swift 38

Unreviewed advisories

All unreviewed 249,950

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,393 advisories

Filter by severity

Sort by

Least recently updated

The Form Maker by 10Web WordPress plugin before 1.15.30 does not sanitise and escape some of its... Low Unreviewed

CVE-2024-10558 was published Mar 24, 2025

The Slider, Gallery, and Carousel by MetaSlider WordPress plugin before 3.95.0 does not sanitise... Low Unreviewed

CVE-2025-1062 was published Mar 24, 2025

The Slider, Gallery, and Carousel by MetaSlider WordPress plugin before 3.95.0 does not sanitise... Low Unreviewed

CVE-2025-1203 was published Mar 24, 2025

The Export and Import Users and Customers plugin for WordPress is vulnerable to arbitrary file... Low Unreviewed

CVE-2025-1972 was published Mar 22, 2025

A vulnerability was found in WebAssembly wabt 1.0.36. It has been declared as critical. This... Low Unreviewed

CVE-2025-2584 was published Mar 21, 2025

A directory traversal issue was discovered in OpenSlides before 4.2.5. Files can be uploaded to... Low Unreviewed

CVE-2025-30343 was published Mar 21, 2025

An issue was discovered in OpenSlides before 4.2.5. When creating new chats via the chat_group... Low Unreviewed

CVE-2025-30345 was published Mar 21, 2025

Out-of-bounds array write in Xpdf 4.05 and earlier, due to incorrect integer overflow checking in... Low Unreviewed

CVE-2025-2574 was published Mar 20, 2025

A vulnerability classified as problematic has been found in Audi Universal Traffic Recorder App 2... Low Unreviewed

CVE-2025-2555 was published Mar 20, 2025

The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to arbitrary... Low Unreviewed

CVE-2024-13922 was published Mar 20, 2025

LocalAI version v2.19.4 (af0545834fd565ab56af0b9348550ca9c3cb5349) contains a vulnerability where... Low Unreviewed

CVE-2024-9901 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability was discovered in phpipam/phpipam version 1.5.2... Low Unreviewed

CVE-2024-10723 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2,... Low Unreviewed

CVE-2024-10724 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2. This... Low Unreviewed

CVE-2024-10725 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2. The... Low Unreviewed

CVE-2024-10722 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability was discovered in phpipam/phpipam version 1.5.2... Low Unreviewed

CVE-2024-10721 was published Mar 20, 2025

A reflected cross-site scripting (XSS) vulnerability exists in phpipam/phpipam versions 1.5.0... Low Unreviewed

CVE-2024-10727 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability exists in phpipam version 1.5.2, specifically... Low Unreviewed

CVE-2024-10719 was published Mar 20, 2025

The WhatsApp cloud service before late 2024 did not block certain crafted PDF content that can... Low Unreviewed

CVE-2025-30259 was published Mar 20, 2025

In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data... Low Unreviewed

CVE-2025-30258 was published Mar 19, 2025

HCL MyXalytics is affected by concurrent login vulnerability. A concurrent login vulnerability... Low Unreviewed

CVE-2024-42176 was published Mar 19, 2025

Shearwater SecurEnvoy SecurAccess Enrol before 9.4.515 is intended to disable accounts that have... Low Unreviewed

CVE-2025-30235 was published Mar 19, 2025

A vulnerability has been identified in the port ACL functionality of AOS-CX software running on... Low Unreviewed

CVE-2025-25040 was published Mar 18, 2025

Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting ... Low Unreviewed

CVE-2025-29431 was published Mar 17, 2025

Incorrect Access Control in Unifiedtransform 2.0 leads to Privilege Escalation allowing the... Low Unreviewed

CVE-2025-25618 was published Mar 17, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

10,393 advisories