GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,807
Erlang
36
GitHub Actions
31
Go
2,390
Maven
5,000+
npm
4,026
NuGet
720
pip
3,815
Pub
12
RubyGems
932
Rust
988
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
263,386 advisories
Filter by severity
Insertion of sensitive information into log file issue exists in "region PAY" App for Android...
Low
Unreviewed
CVE-2025-52580
was published
Jul 22, 2025
The Pixel Gallery Addons for Elementor – Easy Grid, Creative Gallery, Drag and Drop Grid, Custom...
Moderate
Unreviewed
CVE-2025-7644
was published
Jul 22, 2025
The WP-Members Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site...
Moderate
Unreviewed
CVE-2025-7495
was published
Jul 22, 2025
The WP JobHunt plugin for WordPress is vulnerable to Insecure Direct Object Reference in all...
High
Unreviewed
CVE-2025-6585
was published
Jul 22, 2025
A vulnerability, which was classified as problematic, has been found in Sanluan PublicCMS up to 5...
Moderate
Unreviewed
CVE-2025-7953
was published
Jul 22, 2025
A vulnerability classified as critical was found in TOTOLINK T6 4.1.5cu.748. This vulnerability...
Moderate
Unreviewed
CVE-2025-7952
was published
Jul 22, 2025
A vulnerability was found in Sanluan PublicCMS up to 5.202506.a. It has been declared as...
Moderate
Unreviewed
CVE-2025-7949
was published
Jul 22, 2025
A vulnerability classified as problematic was found in jshERP up to 3.5. Affected by this...
Moderate
Unreviewed
CVE-2025-7948
was published
Jul 22, 2025
A vulnerability was found in code-projects Public Chat Room 1.0. It has been rated as critical....
Moderate
Unreviewed
CVE-2025-7950
was published
Jul 22, 2025
The CRM and Lead Management by vcita plugin for WordPress is vulnerable to Stored Cross-Site...
Moderate
Unreviewed
CVE-2025-5240
was published
Jul 22, 2025
The FoxyPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file...
Critical
Unreviewed
CVE-2012-10020
was published
Jul 22, 2025
The User Registration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2025-6831
was published
Jul 22, 2025
A vulnerability classified as critical has been found in jshERP up to 3.5. Affected is an unknown...
Moderate
Unreviewed
CVE-2025-7947
was published
Jul 22, 2025
A vulnerability classified as problematic has been found in code-projects Public Chat Room 1.0....
Moderate
Unreviewed
CVE-2025-7951
was published
Jul 22, 2025
The Website Contact Form With File Upload plugin for WordPress is vulnerable to arbitrary file...
Critical
Unreviewed
CVE-2015-10137
was published
Jul 22, 2025
A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. It has been...
Moderate
Unreviewed
CVE-2025-7946
was published
Jul 22, 2025
ProTip!
Advisories are also available from the
GraphQL API