GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,464
Composer 5,137
Erlang 40
GitHub Actions 38
Go 2,831
Maven 6,209
npm 4,462
NuGet 775
pip 4,226
Pub 12
RubyGems 972
Rust 1,093
Swift 47

Unreviewed advisories

All unreviewed 285,973

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

6,010 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The PAYGENT for WooCommerce plugin for WordPress is vulnerable to Missing Authorization in all... Moderate Unreviewed

CVE-2025-14078 was published Jan 17, 2026

The Phrase TMS Integration for WordPress plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2025-12168 was published Jan 17, 2026

The Community Events plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed

CVE-2025-14029 was published Jan 17, 2026

The Payment Button for PayPal plugin for WordPress is vulnerable to unauthorized order creation... Moderate Unreviewed

CVE-2025-14463 was published Jan 17, 2026

The RepairBuddy – Repair Shop CRM & Booking Plugin for WordPress plugin for WordPress is... Moderate Unreviewed

CVE-2026-0820 was published Jan 17, 2026

The User Registration Using Contact Form 7 plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2025-12825 was published Jan 17, 2026

The Wallet System for WooCommerce plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2025-14450 was published Jan 17, 2026

The GetGenie plugin for WordPress is vulnerable to authorization bypass in all versions up to,... Moderate Unreviewed

CVE-2026-1003 was published Jan 16, 2026

The Cost Calculator Builder plugin for WordPress is vulnerable to Unauthenticated Payment Status... Moderate Unreviewed

CVE-2025-14757 was published Jan 16, 2026

The Essential Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2026-1004 was published Jan 16, 2026

The MailerLite - WooCommerce integration plugin for WordPress is vulnerable to unauthorized data... Moderate Unreviewed

CVE-2026-1000 was published Jan 16, 2026

The Awesome Support - WordPress HelpDesk & Support Plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-12641 was published Jan 16, 2026

The All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic plugin for... Moderate Unreviewed

CVE-2025-14384 was published Jan 16, 2026

The Booking Calendar plugin for WordPress is vulnerable to Missing Authorization leading to... Moderate Unreviewed

CVE-2025-14982 was published Jan 16, 2026

The vulnerability, if exploited, could allow an authenticated miscreant (OS Standard User) to... High Unreviewed

CVE-2025-64729 was published Jan 16, 2026

GravCMS 1.10.7 contains an unauthenticated vulnerability that allows remote attackers to write... Critical Unreviewed

CVE-2021-47812 was published Jan 16, 2026

The AffiliateX – Amazon Affiliate Plugin plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2025-13859 was published Jan 15, 2026

The Kalium 3 | Creative WordPress & WooCommerce Theme theme for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-12895 was published Jan 15, 2026

The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to... Low Unreviewed

CVE-2025-14457 was published Jan 15, 2026

The Aplazo Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of... Moderate Unreviewed

CVE-2025-15512 was published Jan 14, 2026

The PayHere Payment Gateway Plugin for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-15475 was published Jan 14, 2026

The Perfit WooCommerce plugin for WordPress is vulnerable to Missing Authorization in all... Moderate Unreviewed

CVE-2025-14173 was published Jan 14, 2026

The WP-CRM System plugin for WordPress is vulnerable to unauthorized access due to missing... Moderate Unreviewed

CVE-2025-14854 was published Jan 14, 2026

The Netcash WooCommerce Payment Gateway plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2025-14880 was published Jan 14, 2026

The Responsive Accordion Slider plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2026-0635 was published Jan 14, 2026

Previous1…241 Next

Previous 1 2 3 4 5 … 240 241 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,010 advisories