GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,258
Composer 4,633
Erlang 34
GitHub Actions 25
Go 2,239
Maven 5,485
npm 3,900
NuGet 701
pip 3,666
Pub 12
RubyGems 914
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 252,682

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

218 advisories

Filter by severity

Sort by

Least recently updated

This issue was addressed with improved handling of symlinks. This issue is fixed in visionOS 2.4,... Critical Unreviewed

CVE-2025-31182 was published Apr 1, 2025

An authentication issue was addressed with improved state management. This issue is fixed in... Critical Unreviewed

CVE-2025-31194 was published Apr 1, 2025

An access issue was addressed with additional sandbox restrictions on the system pasteboards.... Critical Unreviewed

CVE-2025-30461 was published Apr 1, 2025

This issue was addressed with additional entitlement checks. This issue is fixed in macOS Ventura... Critical Unreviewed

CVE-2025-24259 was published Apr 1, 2025

This issue was addressed by adding a delay between verification code attempts. This issue is... Critical Unreviewed

CVE-2025-24245 was published Apr 1, 2025

A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in... Critical Unreviewed

CVE-2025-24249 was published Apr 1, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Critical Unreviewed

CVE-2025-24181 was published Apr 1, 2025

The Checkout Mestres do WP for WooCommerce plugin for WordPress is vulnerable to unauthorized... Critical Unreviewed

CVE-2025-2266 was published Mar 29, 2025

The Altair theme for WordPress is vulnerable to unauthorized modification of data that can lead... Critical Unreviewed

CVE-2024-12922 was published Mar 19, 2025

The Golo - City Travel Guide WordPress Theme theme for WordPress is vulnerable to privilege... Critical Unreviewed

CVE-2024-12876 was published Mar 7, 2025

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923... Critical Unreviewed

CVE-2025-27666 was published Mar 5, 2025

The Newscrunch theme for WordPress is vulnerable to arbitrary file uploads due to a missing... Critical Unreviewed

CVE-2025-1307 was published Mar 4, 2025

Missing Authorization vulnerability in NotFound Residential Address Detection allows Privilege... Critical Unreviewed

CVE-2025-27270 was published Mar 3, 2025

Serosoft Solutions Pvt Ltd Academia Student Information System (SIS) EagleR v1.0.118 was... Critical Unreviewed

CVE-2025-25953 was published Mar 3, 2025

Incorrect access control in the component /rest/staffResource/findAllUsersAcrossOrg of Serosoft... Critical Unreviewed

CVE-2025-27583 was published Mar 3, 2025

The Oliver POS – A WooCommerce Point of Sale (POS) plugin for WordPress is vulnerable to... Critical Unreviewed

CVE-2024-13513 was published Feb 15, 2025

A vulnerability in an API of Cisco ISE could allow an authenticated, remote attacker with valid... Critical Unreviewed

CVE-2025-20125 was published Feb 5, 2025

The Media Manager for UserPro plugin for WordPress is vulnerable to unauthorized modification of... Critical Unreviewed

CVE-2024-12822 was published Jan 30, 2025

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.2, watchOS... Critical Unreviewed

CVE-2024-54530 was published Jan 28, 2025

XWiki Realtime WYSIWYG Editor extension allows privilege escalation (PR) through realtime WYSIWYG editing Critical

CVE-2025-23025 was published for org.xwiki.platform:xwiki-platform-realtime-wysiwyg-ui (Maven) Jan 14, 2025

Missing Authorization vulnerability in Inspry Agency Toolkit allows Privilege Escalation.This... Critical Unreviewed

CVE-2024-56066 was published Dec 31, 2024

The WooCommerce Point of Sale plugin for WordPress is vulnerable to privilege escalation in all... Critical Unreviewed

CVE-2024-11281 was published Dec 25, 2024

Missing Authorization vulnerability in ThemeHunk Zita Site Builder allows Accessing Functionality... Critical Unreviewed

CVE-2024-54369 was published Dec 16, 2024

Missing Authorization vulnerability in dugudlabs Eyewear prescription form allows Privilege... Critical Unreviewed

CVE-2024-54239 was published Dec 13, 2024

Missing Authorization vulnerability in JS Help Desk JS Help Desk – Best Help Desk & Support... Critical Unreviewed

CVE-2022-46838 was published Dec 13, 2024

Previous 1 2 3 4 5 … 8 9 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

218 advisories