GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,464
Composer 5,137
Erlang 40
GitHub Actions 38
Go 2,831
Maven 6,209
npm 4,462
NuGet 775
pip 4,226
Pub 12
RubyGems 972
Rust 1,093
Swift 47

Unreviewed advisories

All unreviewed 286,035

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

286,035 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-53324 was published Nov 6, 2025

Deserialization of Untrusted Data vulnerability in Cozmoslabs TranslatePress translatepress... High Unreviewed

CVE-2025-58592 was published Nov 6, 2025

Authentication Bypass by Spoofing vulnerability in Saad Iqbal All In One Login change-wp-admin... Critical Unreviewed

CVE-2025-58595 was published Nov 6, 2025

Deserialization of Untrusted Data vulnerability in sbouey Falang multilanguage falang allows... High Unreviewed

CVE-2025-58619 was published Nov 6, 2025

Missing Authorization vulnerability in bPlugins Info Cards info-cards allows Accessing... High Unreviewed

CVE-2025-54711 was published Nov 6, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-54737 was published Nov 6, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-54722 was published Nov 6, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-54721 was published Nov 6, 2025

Deserialization of Untrusted Data vulnerability in NooTheme Yogi - Health Beauty & Yoga noo-yogi... High Unreviewed

CVE-2025-54719 was published Nov 6, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-54718 was published Nov 6, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-53573 was published Nov 6, 2025

Deserialization of Untrusted Data vulnerability in NooTheme WeMusic noo-wemusic allows Object... Critical Unreviewed

CVE-2025-53586 was published Nov 6, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-53574 was published Nov 6, 2025

Missing Authorization vulnerability in WP Messiah Ai Image Alt Text Generator for WP ai-image-alt... High Unreviewed

CVE-2025-58207 was published Nov 6, 2025

Missing Authorization vulnerability in Jthemes imEvent imevent allows Accessing Functionality Not... Moderate Unreviewed

CVE-2025-58243 was published Nov 6, 2025

Missing Authorization vulnerability in kamleshyadav Miraculous miraculous allows Exploiting... High Unreviewed

CVE-2025-58629 was published Nov 6, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-58964 was published Nov 6, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-58638 was published Nov 6, 2025

Missing Authorization vulnerability in ganddser Jock On Air Now (JOAN) joan allows Exploiting... Moderate Unreviewed

CVE-2025-58986 was published Nov 6, 2025

Deserialization of Untrusted Data vulnerability in Cristián Lávaque s2Member s2member allows... Critical Unreviewed

CVE-2025-58998 was published Nov 6, 2025

Deserialization of Untrusted Data vulnerability in CRM Perks WP Gravity Forms Keap/Infusionsoft... Critical Unreviewed

CVE-2025-58636 was published Nov 6, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-58994 was published Nov 6, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-58995 was published Nov 6, 2025

Authorization Bypass Through User-Controlled Key vulnerability in kamleshyadav Miraculous Core... Critical Unreviewed

CVE-2025-58627 was published Nov 6, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Helmut Wandl Advanced Settings... Critical Unreviewed

CVE-2025-58996 was published Nov 6, 2025

Previous 1…399400 Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

286,035 advisories