GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,128
Composer 4,331
Erlang 31
GitHub Actions 21
Go 2,093
Maven 5,261
npm 3,756
NuGet 678
pip 3,443
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,193

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

112,926 advisories

Filter by severity

Sort by

Least recently updated

Improper Privilege Management vulnerability in Cloudflare WARP on Windows allows File... Moderate Unreviewed

CVE-2025-0651 was published Jan 22, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-23992 was published Jan 22, 2025

IBM Robotic Process Automation for Cloud Pak 21.0.0 through 21.0.7.19 and 23.0.0 through 23.0.19... Moderate Unreviewed

CVE-2024-51457 was published Jan 22, 2025

A vulnerability in the Object Linking and Embedding 2 (OLE2) decryption routine of ClamAV could... Moderate Unreviewed

CVE-2025-20128 was published Jan 22, 2025

Missing Authorization vulnerability in Eugen Bobrowski Debug Tool allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-23684 was published Jan 22, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2025-23562 was published Jan 22, 2025

Missing Authorization vulnerability in NotFound Database Sync allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-23486 was published Jan 22, 2025

The WP Hotel Booking plugin for WordPress is vulnerable to unauthorized access of data due to a... Moderate Unreviewed

CVE-2024-13447 was published Jan 22, 2025

A externally controlled reference to a resource in another sphere in Fortinet FortiManager before... Moderate Unreviewed

CVE-2022-23439 was published Jan 22, 2025

The XML for Google Merchant Center plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed

CVE-2024-13406 was published Jan 22, 2025

The AI Power: Complete AI Pack plugin for WordPress is vulnerable to unauthorized access due to a... Moderate Unreviewed

CVE-2024-13361 was published Jan 22, 2025

The Themify Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to... Moderate Unreviewed

CVE-2024-13319 was published Jan 22, 2025

The AI Power: Complete AI Pack plugin for WordPress is vulnerable to Server-Side Request Forgery... Moderate Unreviewed

CVE-2024-13360 was published Jan 22, 2025

The Stackable – Page Builder Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed

CVE-2024-12117 was published Jan 22, 2025

The WPBot Pro Wordpress Chatbot plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2024-12879 was published Jan 22, 2025

Improper neutralization of special elements used in an OS command ('OS Command Injection') issue... Moderate Unreviewed

CVE-2025-23237 was published Jan 22, 2025

The Ketchup Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-13590 was published Jan 22, 2025

The Picture Gallery – Frontend Image Uploads, AJAX Photo List plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2024-13584 was published Jan 22, 2025

The WP-Polls plugin for WordPress is vulnerable to SQL Injection via COOKIE in all versions up to... Moderate Unreviewed

CVE-2024-13426 was published Jan 22, 2025

A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 ... Moderate Unreviewed

CVE-2023-37035 was published Jan 22, 2025

In reload of ServiceListing.java , there is a possible way to allow a malicious app to hide an... Moderate Unreviewed

CVE-2024-49733 was published Jan 22, 2025

In build_read_multi_rsp of gatt_sr.cc, there is a possible denial of service due to a logic error... Moderate Unreviewed

CVE-2024-43763 was published Jan 22, 2025

In multiple locations, there is a possible way to access media content belonging to another user... Moderate Unreviewed

CVE-2023-40108 was published Jan 22, 2025

Vulnerability in the PeopleSoft Enterprise FIN eSettlements product of Oracle PeopleSoft ... Moderate Unreviewed

CVE-2025-21539 was published Jan 21, 2025

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web... Moderate Unreviewed

CVE-2025-21538 was published Jan 21, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

112,926 advisories