GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,205
Composer 4,894
Erlang 38
GitHub Actions 38
Go 2,552
Maven 6,024
npm 4,224
NuGet 746
pip 3,999
Pub 12
RubyGems 953
Rust 1,041
Swift 45

Unreviewed advisories

All unreviewed 273,117

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

139,831 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The eHDR CTMS from Sunnet has a SQL Injection vulnerability, allowing remote attackers with... Moderate Unreviewed

CVE-2025-3707 was published May 2, 2025

The Taxonomy Chain Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-3748 was published May 2, 2025

The Formality plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘align’... Moderate Unreviewed

CVE-2025-3858 was published May 2, 2025

Multiple plugins and/or themes for WordPress using Smart Framework are vulnerable to Stored Cross... Moderate Unreviewed

CVE-2024-13419 was published May 2, 2025

Multiple plugins and/or themes for WordPress are vulnerable to unauthorized access due to a... Moderate Unreviewed

CVE-2024-13420 was published May 2, 2025

The FULL – Cliente plugin for WordPress is vulnerable to SQL Injection via the 'formId' parameter... Moderate Unreviewed

CVE-2024-12023 was published May 2, 2025

The Yame | Link In Bio plugin for WordPress is vulnerable to Sensitive Information Exposure in... Moderate Unreviewed

CVE-2025-2880 was published May 2, 2025

User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based)... Moderate Unreviewed

CVE-2025-29825 was published May 2, 2025

The GmapsMania plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's... Moderate Unreviewed

CVE-2025-4131 was published May 2, 2025

The Flynax Bridge plugin for WordPress is vulnerable to unauthorized loss of data due to a... Moderate Unreviewed

CVE-2025-4177 was published May 2, 2025

A vulnerability was found in SourceCodester Patient Record Management System 1.0. It has been... Moderate Unreviewed

CVE-2025-4196 was published May 2, 2025

The KiwiChat NextClient plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-3670 was published May 2, 2025

A vulnerability classified as critical has been found in code-projects Patient Record Management... Moderate Unreviewed

CVE-2025-4197 was published May 2, 2025

IBM Concert Software 1.0.0 through 1.0.5 could allow a remote attacker to traverse directories on... Moderate Unreviewed

CVE-2024-55913 was published May 2, 2025

A vulnerability was found in itsourcecode Restaurant Management System 1.0 and classified as... Moderate Unreviewed

CVE-2025-4193 was published May 2, 2025

A vulnerability was found in itsourcecode Restaurant Management System 1.0. It has been... Moderate Unreviewed

CVE-2025-4192 was published May 2, 2025

A vulnerability was found in itsourcecode Gym Management System 1.0. It has been declared as... Moderate Unreviewed

CVE-2025-4195 was published May 2, 2025

IBM Concert Software 1.0.0 through 1.0.5 could allow an authenticated user to cause a denial of... Moderate Unreviewed

CVE-2024-55909 was published May 2, 2025

IBM Concert Software 1.0.0 through 1.0.5 is vulnerable to server-side request forgery (SSRF).... Moderate Unreviewed

CVE-2024-55910 was published May 2, 2025

IBM Concert Software 1.0.0 through 1.0.5 uses weaker than expected cryptographic algorithms that... Moderate Unreviewed

CVE-2024-55912 was published May 2, 2025

A vulnerability, which was classified as critical, was found in Wangshen SecGate 3600 2024.... Moderate Unreviewed

CVE-2025-4186 was published May 2, 2025

A vulnerability has been found in PHPGurukul Employee Record Management System 1.3 and classified... Moderate Unreviewed

CVE-2025-4191 was published May 2, 2025

A vulnerability was found in xiaowei1118 java_server up to... Moderate Unreviewed

CVE-2025-4178 was published May 2, 2025

A vulnerability has been found in PHPGurukul Blood Bank & Donor Management System 2.4 and... Moderate Unreviewed

CVE-2025-4176 was published May 2, 2025

A vulnerability was found in PCMan FTP Server 2.0.7. It has been classified as critical. Affected... Moderate Unreviewed

CVE-2025-4180 was published May 2, 2025

Previous 1…400Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

139,831 advisories