GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,720
Composer 5,027
Erlang 39
GitHub Actions 38
Go 2,667
Maven 6,116
npm 4,295
NuGet 760
pip 4,073
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,756

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

143,487 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings plugin for... Moderate Unreviewed

CVE-2025-12174 was published Nov 19, 2025

The Icegram Express - Email Subscribers, Newsletters and Marketing Automation Plugin for... Moderate Unreviewed

CVE-2025-12349 was published Nov 19, 2025

The Responsive Lightbox & Gallery plugin for WordPress is vulnerable to Server-Side Request... Moderate Unreviewed

CVE-2025-12359 was published Nov 19, 2025

The Quiz Maker plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed

CVE-2025-12426 was published Nov 19, 2025

The WSChat – WordPress Live Chat plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2025-12751 was published Nov 19, 2025

The YITH WooCommerce Wishlist plugin for WordPress is vulnerable to authorization bypass in all... Moderate Unreviewed

CVE-2025-12777 was published Nov 19, 2025

The Pet-Manager – Petfinder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-12710 was published Nov 19, 2025

The SiteSEO – SEO Simplified plugin for WordPress is vulnerable to unauthorized modification of... Moderate Unreviewed

CVE-2025-12814 was published Nov 19, 2025

The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-6251 was published Nov 19, 2025

The YITH WooCommerce Wishlist plugin for WordPress is vulnerable to Insecure Direct Object... Moderate Unreviewed

CVE-2025-12427 was published Nov 19, 2025

The New User Approve plugin for WordPress is vulnerable to unauthorized data disclosure in all... Moderate Unreviewed

CVE-2025-12770 was published Nov 19, 2025

Tanium addressed an arbitrary file deletion vulnerability in TanOS. Moderate Unreviewed

CVE-2025-13225 was published Nov 19, 2025

MongoDB driver extension affected by mongoc_bulk_operation_t's read of invalid memory Moderate

CVE-2025-12119 was published for mongodb/mongodb-extension (Composer) Nov 19, 2025

The Mozart FM Transmitter web management interface on version WEBMOZZI-00287, contains a... Moderate Unreviewed

CVE-2025-63229 was published Nov 19, 2025

A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a... Moderate Unreviewed

CVE-2025-61664 was published Nov 18, 2025

A Use-After-Free vulnerability has been discovered in GRUB's gettext module. This flaw stems from... Moderate Unreviewed

CVE-2025-61662 was published Nov 18, 2025

A vulnerability has been identified in the GRUB (Grand Unified Bootloader) component. This flaw... Moderate Unreviewed

CVE-2025-61661 was published Nov 18, 2025

A vulnerability has been identified in the GRUB2 bootloader's normal command that poses an... Moderate Unreviewed

CVE-2025-61663 was published Nov 18, 2025

pnetlab 5.3.11 is vulnerable to Command Injection via the qemu_options parameter. Moderate Unreviewed

CVE-2025-63749 was published Nov 18, 2025

A vulnerability in the command line interface of affected devices could allow an authenticated... Moderate Unreviewed

CVE-2025-37162 was published Nov 18, 2025

Incorrect access control in mihomo v1.19.11 allows authenticated attackers with low-level... Moderate Unreviewed

CVE-2025-56499 was published Nov 18, 2025

The Sencore SMP100 SMP Media Platform (firmware versions V4.2.160, V60.1.4, V60.1.29) is... Moderate Unreviewed

CVE-2025-63226 was published Nov 18, 2025

The comment editing template (dzz/comment/template/edit_form.htm) in DzzOffice 2.3.x lacks... Moderate Unreviewed

CVE-2025-63693 was published Nov 18, 2025

A command injection vulnerability exists in the AOS-CX Operating System. Successful exploitation... Moderate Unreviewed

CVE-2025-37157 was published Nov 18, 2025

A command injection vulnerability exists in the AOS-CX Operating System. Successful exploitation... Moderate Unreviewed

CVE-2025-37158 was published Nov 18, 2025

Previous 1…5…400 Next

Previous 1 2 3 4 5 6 7 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

143,487 advisories