GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,286
Composer 4,356
Erlang 33
GitHub Actions 22
Go 2,121
Maven 5,299
npm 3,783
NuGet 683
pip 3,465
Pub 12
RubyGems 893
Rust 892
Swift 38

Unreviewed advisories

All unreviewed 244,332

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

114,187 advisories

Filter by severity

Sort by

Least recently updated

The AForms Eats plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to,... Moderate Unreviewed

CVE-2024-13539 was published Feb 12, 2025

The aDirectory – WordPress Directory Listing Plugin plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13541 was published Feb 12, 2025

The WPSyncSheets Lite For WPForms – WPForms Google Spreadsheet Addon plugin for WordPress is... Moderate Unreviewed

CVE-2024-12164 was published Feb 12, 2025

The Liveticker (by stklcode) plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-13701 was published Feb 12, 2025

The StaffList plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... Moderate Unreviewed

CVE-2024-13749 was published Feb 12, 2025

The WP Table Manager plugin for WordPress is vulnerable to unauthorized access due to a missing... Moderate Unreviewed

CVE-2024-13374 was published Feb 12, 2025

The Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin plugin for WordPress... Moderate Unreviewed

CVE-2024-13601 was published Feb 12, 2025

The Admire Extra plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed

CVE-2024-13665 was published Feb 12, 2025

The Puzzles | WP Magazine / Review with Store WordPress Theme + RTL theme for WordPress is... Moderate Unreviewed

CVE-2024-13769 was published Feb 12, 2025

The NGG Smart Image Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-13658 was published Feb 12, 2025

The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13554 was published Feb 12, 2025

The Discover the Best Woocommerce Product Brands Plugin for WordPress – Woocommerce Brands Plugin... Moderate Unreviewed

CVE-2024-11746 was published Feb 12, 2025

The Houzez Property Feed plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2025-0808 was published Feb 12, 2025

A XSS vulnerability was found in the ChurchCRM v.5.5.0 functionality, edit your event, where... Moderate Unreviewed

CVE-2024-25898 was published Feb 21, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2024-34566 was published May 8, 2024

NVIDIA nvJPEG2000 library contains a vulnerability where an attacker can cause an out-of-bounds... Moderate Unreviewed

CVE-2024-0142 was published Feb 12, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2024-29793 was published Mar 27, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2024-31349 was published Apr 7, 2024

Dell BSAFE SSL-J contains a deadlock vulnerability. A remote attacker could potentially exploit... Moderate Unreviewed

CVE-2024-29172 was published Feb 12, 2025

Dell BSAFE SSL-J contains an Improper certificate verification vulnerability. A remote attacker... Moderate Unreviewed

CVE-2024-29171 was published Feb 12, 2025

NVIDIA nvJPEG2000 library contains a vulnerability where an attacker can cause a buffer overflow... Moderate Unreviewed

CVE-2024-0144 was published Feb 12, 2025

NVIDIA Triton Inference Server contains a vulnerability in the model loading API, where a user... Moderate Unreviewed

CVE-2024-53880 was published Feb 12, 2025

NVIDIA nvJPEG2000 library contains a vulnerability where an attacker can cause an out-of-bounds... Moderate Unreviewed

CVE-2024-0143 was published Feb 12, 2025

NVIDIA nvJPEG2000 library contains a vulnerability where an attacker can cause a heap-based... Moderate Unreviewed

CVE-2024-0145 was published Feb 12, 2025

A vulnerability has been identified in GoldPanKit eva-server v4.1.0. It affects the path... Moderate Unreviewed

CVE-2024-54909 was published Feb 7, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

114,187 advisories