Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,350
Erlang
31
GitHub Actions
22
Go
2,119
Maven
5,000+
npm
3,778
NuGet
680
pip
3,459
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

113,975 advisories

Loading
A persistent cross-site scripting (XSS) vulnerability in NodeBB v3.11.0 allows remote attackers... Moderate Unreviewed
CVE-2024-57041 was published Jan 24, 2025
The Gutenberg Blocks with AI by Kadence WP plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed
CVE-2024-4481 was published May 14, 2024
A stored cross-site scripting (XSS) vulnerability in Umbraco CMS v14.3.1 allows attackers to... Moderate Unreviewed
CVE-2024-55488 was published Jan 22, 2025
The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is... Moderate Unreviewed
CVE-2024-4208 was published May 15, 2024
The Sina Extension for Elementor (Slider, Gallery, Form, Modal, Data Table, Tab, Particle, Free... Moderate Unreviewed
CVE-2024-3988 was published Apr 25, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Easy Digital Downloads.This issue affects Easy... Moderate Unreviewed
CVE-2024-31113 was published May 14, 2024
The Gutenberg Blocks by Kadence Blocks – Page Builder Features plugin for WordPress is vulnerable... Moderate Unreviewed
CVE-2024-3189 was published May 15, 2024
The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is... Moderate Unreviewed
CVE-2024-4209 was published May 14, 2024
The Thunderbird Address Book URI fields contained unsanitized links. This could be used by an... Moderate Unreviewed
CVE-2025-1015 was published Feb 4, 2025
SunGrow WiNet-SV200.001.00.P027 and earlier versions contains a hardcoded password that can be... Moderate Unreviewed
CVE-2024-50690 was published Jan 25, 2025
A cross-site request forgery (CSRF) vulnerability in the pjActionUpdate function of PHPJabbers... Moderate Unreviewed
CVE-2024-57429 was published Feb 6, 2025
A vulnerability, which was classified as problematic, has been found in Mindskip xzs-mysql... Moderate Unreviewed
CVE-2025-1084 was published Feb 7, 2025
Microsoft Edge for IOS and Android Spoofing Vulnerability Moderate Unreviewed
CVE-2025-21253 was published Feb 7, 2025
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2025-21283 was published Feb 7, 2025
A vulnerability, which was classified as problematic, was found in Animati PACS up to 1.24.12.09... Moderate Unreviewed
CVE-2025-1085 was published Feb 7, 2025
A vulnerability has been found in Safetytest Cloud-Master Server up to 1.1.1 and classified as... Moderate Unreviewed
CVE-2025-1086 was published Feb 7, 2025
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2025-21279 was published Feb 7, 2025
Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed
CVE-2025-21267 was published Feb 7, 2025
A vulnerability classified as problematic has been found in Mindskip xzs-mysql 学之思开源考试系统 3.9.0.... Moderate Unreviewed
CVE-2025-1082 was published Feb 7, 2025
Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed
CVE-2025-21404 was published Feb 7, 2025
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Easy Digital... Moderate Unreviewed
CVE-2024-32100 was published May 14, 2024
The Qi Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2024-3309 was published Apr 27, 2024
The Gutenberg Blocks by Kadence Blocks – Page Builder Features plugin for WordPress is vulnerable... Moderate Unreviewed
CVE-2024-2273 was published May 2, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Metagauss ProfileGrid.This issue affects... Moderate Unreviewed
CVE-2024-31362 was published Apr 12, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Easy Digital Downloads.This issue affects Easy... Moderate Unreviewed
CVE-2024-31293 was published Apr 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database