GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,242
Composer 4,809
Erlang 36
GitHub Actions 31
Go 2,393
Maven 5,777
npm 4,026
NuGet 720
pip 3,818
Pub 12
RubyGems 932
Rust 988
Swift 38

Unreviewed advisories

All unreviewed 263,484

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,050 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Omnishop plugin for WordPress is vulnerable to Unauthenticated Registration Bypass in all... Moderate Unreviewed

CVE-2025-6215 was published Jul 23, 2025

Headwind MDM before 5.33.1 makes configuration details accessible to unauthorized users. The... Moderate Unreviewed

CVE-2025-43720 was published Jul 21, 2025

The Vchasno Kasa plugin for WordPress is vulnerable to unauthorized access of data due to a... Moderate Unreviewed

CVE-2025-6721 was published Jul 19, 2025

The Vchasno Kasa plugin for WordPress is vulnerable to unauthorized loss of data due to a missing... Moderate Unreviewed

CVE-2025-6720 was published Jul 19, 2025

The Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal plugin for WordPress is... Moderate Unreviewed

CVE-2025-7772 was published Jul 18, 2025

The Block Editor Gallery Slider plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2025-6726 was published Jul 18, 2025

The Plugin Pengiriman WooCommerce Kurir Reguler, Instan, Kargo – Biteship plugin for WordPress is... Moderate Unreviewed

CVE-2025-5816 was published Jul 18, 2025

The Listly: Listicles For WordPress plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2025-5811 was published Jul 18, 2025

Broken access control in Fortra's GoAnywhere MFT prior to 7.8.1 allows an attacker to create a... Moderate Unreviewed

CVE-2025-3871 was published Jul 16, 2025

Missing Authorization vulnerability in CodeSolz Ultimate Push Notifications allows Exploiting... Moderate Unreviewed

CVE-2025-50028 was published Jul 16, 2025

Missing Authorization vulnerability in activity-log.com Profiler - What Slowing Down Your WP... Moderate Unreviewed

CVE-2025-48339 was published Jul 16, 2025

Missing Authorization vulnerability in WPFactory Wishlist for WooCommerce allows Exploiting... Moderate Unreviewed

CVE-2025-49319 was published Jul 16, 2025

Missing Authorization vulnerability in alexvtn Internal Linking of Related Contents allows... Moderate Unreviewed

CVE-2025-49884 was published Jul 16, 2025

Missing Authorization vulnerability in WPFactory Product XML Feed Manager for WooCommerce allows... Moderate Unreviewed

CVE-2025-30959 was published Jul 16, 2025

Missing Authorization vulnerability in blazethemes News Kit Elementor Addons allows Exploiting... Moderate Unreviewed

CVE-2025-54037 was published Jul 16, 2025

Missing Authorization vulnerability in QuanticaLabs Cost Calculator allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-54047 was published Jul 16, 2025

Missing Authorization vulnerability in SMTP2GO SMTP2GO allows Exploiting Incorrectly Configured... Moderate Unreviewed

CVE-2025-54011 was published Jul 16, 2025

Missing Authorization vulnerability in CreativeMindsSolutions CM Pop-Up banners allows Exploiting... Moderate Unreviewed

CVE-2025-54018 was published Jul 16, 2025

Missing Authorization vulnerability in alexvtn Chatbox Manager allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-48167 was published Jul 16, 2025

Missing Authorization vulnerability in ThemeIsle Hestia allows Accessing Functionality Not... Moderate Unreviewed

CVE-2025-53986 was published Jul 16, 2025

Missing Authorization vulnerability in favethemes Houzez allows Exploiting Incorrectly Configured... Moderate Unreviewed

CVE-2025-53997 was published Jul 16, 2025

Missing Authorization vulnerability in Bill Minozzi Real Estate Property 2024 Create Your Own... Moderate Unreviewed

CVE-2025-48150 was published Jul 16, 2025

Missing Authorization vulnerability in enituretechnology Residential Address Detection allows... Moderate Unreviewed

CVE-2025-48155 was published Jul 16, 2025

Missing Authorization vulnerability in Bill Minozzi Stop and Block bots plugin Anti bots allows... Moderate Unreviewed

CVE-2025-48166 was published Jul 16, 2025

A Missing Authorization vulnerability in Juniper Networks Security Director allows an... Moderate Unreviewed

CVE-2025-52950 was published Jul 11, 2025

Previous 1 2 3 4 5 … 121 122 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,050 advisories