Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,800
Erlang
36
GitHub Actions
29
Go
2,380
Maven
5,000+
npm
4,005
NuGet
720
pip
3,805
Pub
12
RubyGems
927
Rust
986
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,018 advisories

Loading
A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less... High Unreviewed
CVE-2025-26372 was published Feb 12, 2025
A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua in Q-Free MaxTime less than or... High Unreviewed
CVE-2025-26377 was published Feb 12, 2025
A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua in Q-Free MaxTime less than or... High Unreviewed
CVE-2025-26378 was published Feb 12, 2025
Missing Authorization vulnerability in monetagwp Monetag Official Plugin allows Exploiting... High Unreviewed
CVE-2024-52500 was published Feb 14, 2025
Missing Authorization vulnerability in Michael Revellin-Clerc Bulk Menu Edit allows Exploiting... High Unreviewed
CVE-2025-24692 was published Feb 14, 2025
The Affiliate Links: WordPress Plugin for Link Cloaking and Link Management plugin for WordPress... High Unreviewed
CVE-2024-13556 was published Feb 18, 2025
The GetBookingsWP – Appointments Booking Calendar Plugin For WordPress plugin for WordPress is... High Unreviewed
CVE-2024-13677 was published Feb 18, 2025
Missing Authorization vulnerability in Vito Peleg Atarim allows Exploiting Incorrectly Configured... High Unreviewed
CVE-2025-22657 was published Feb 18, 2025
The Trash Duplicate and 301 Redirect plugin for WordPress is vulnerable to unauthorized loss of... High Unreviewed
CVE-2024-13468 was published Feb 19, 2025
Missing Authorization vulnerability in revenueflex Auto Ad Inserter – Increase Google Adsense and... High Unreviewed
CVE-2025-27296 was published Feb 24, 2025
Missing Authorization vulnerability in revmakx DefendWP Firewall allows Exploiting Incorrectly... High Unreviewed
CVE-2025-22280 was published Feb 27, 2025
The Cardealer theme for WordPress is vulnerable to privilege escalation in versions up to, and... High Unreviewed
CVE-2025-1682 was published Feb 28, 2025
The WHMPress - WHMCS Client Area plugin for WordPress is vulnerable to unauthorized modification... High Unreviewed
CVE-2024-9195 was published Feb 28, 2025
Missing Authorization vulnerability in SEO Squirrly SEO Plugin by Squirrly SEO.This issue affects... High Unreviewed
CVE-2025-24654 was published Mar 3, 2025
The Animation Addons for Elementor Pro plugin for WordPress is vulnerable to unauthorized... High Unreviewed
CVE-2025-1639 was published Mar 4, 2025
The WordPress Awesome Import & Export Plugin - Import & Export WordPress Data plugin for... High Unreviewed
CVE-2024-13232 was published Mar 5, 2025
The Flex Mag - Responsive WordPress News Theme theme for WordPress is vulnerable to unauthorized... High Unreviewed
CVE-2024-13655 was published Mar 7, 2025
The UiPress lite | Effortless custom dashboards, admin themes and pages plugin for WordPress is... High Unreviewed
CVE-2025-1309 was published Mar 7, 2025
Due to missing authorization check, SAP NetWeaver (ABAP Class Builder) allows an attacker to gain... High Unreviewed
CVE-2025-26661 was published Mar 11, 2025
The Eco Nature - Environment & Ecology WordPress Theme theme for WordPress is vulnerable to... High Unreviewed
CVE-2025-0952 was published Mar 14, 2025
The SoundRise Music plugin for WordPress is vulnerable to unauthorized modification of data that... High Unreviewed
CVE-2025-2103 was published Mar 14, 2025
The JobCareer | Job Board Responsive WordPress Theme theme for WordPress is vulnerable to... High Unreviewed
CVE-2024-12810 was published Mar 14, 2025
The Directory Listings WordPress plugin – uListing plugin for WordPress is vulnerable to... High Unreviewed
CVE-2025-1657 was published Mar 15, 2025
The School Management System – WPSchoolPress plugin for WordPress is vulnerable to Privilege... High Unreviewed
CVE-2025-1667 was published Mar 15, 2025
Missing Authorization vulnerability in NotFound Fresh Framework allows Accessing Functionality... High Unreviewed
CVE-2025-26961 was published Mar 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database