GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,242
Composer 4,809
Erlang 36
GitHub Actions 31
Go 2,393
Maven 5,777
npm 4,026
NuGet 720
pip 3,818
Pub 12
RubyGems 932
Rust 988
Swift 38

Unreviewed advisories

All unreviewed 263,511

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

4,303 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Realty Portal – Agent plugin for WordPress is vulnerable to Privilege Escalation due to... High Unreviewed

CVE-2025-6190 was published Jul 23, 2025

The Omnishop plugin for WordPress is vulnerable to Unauthenticated Registration Bypass in all... Moderate Unreviewed

CVE-2025-6215 was published Jul 23, 2025

Missing Authorization vulnerability in Drupal File Download allows Forceful Browsing.This issue... High Unreviewed

CVE-2025-7717 was published Jul 21, 2025

Headwind MDM before 5.33.1 makes configuration details accessible to unauthorized users. The... Moderate Unreviewed

CVE-2025-43720 was published Jul 21, 2025

The bSecure plugin for WordPress is vulnerable to Privilege Escalation due to missing... Critical Unreviewed

CVE-2025-6187 was published Jul 22, 2025

The Vchasno Kasa plugin for WordPress is vulnerable to unauthorized access of data due to a... Moderate Unreviewed

CVE-2025-6721 was published Jul 19, 2025

The Vchasno Kasa plugin for WordPress is vulnerable to unauthorized loss of data due to a missing... Moderate Unreviewed

CVE-2025-6720 was published Jul 19, 2025

Missing authorization in Azure Machine Learning allows an authorized attacker to elevate... Critical Unreviewed

CVE-2025-49747 was published Jul 18, 2025

The Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal plugin for WordPress is... Moderate Unreviewed

CVE-2025-7772 was published Jul 18, 2025

The Listly: Listicles For WordPress plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2025-5811 was published Jul 18, 2025

The B1.lt plugin for WordPress is vulnerable to SQL Injection due to a missing capability check... High Unreviewed

CVE-2025-6718 was published Jul 18, 2025

The Block Editor Gallery Slider plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2025-6726 was published Jul 18, 2025

The aapanel WP Toolkit plugin for WordPress is vulnerable to Privilege Escalation due to missing... High Unreviewed

CVE-2025-6813 was published Jul 18, 2025

The Plugin Pengiriman WooCommerce Kurir Reguler, Instan, Kargo – Biteship plugin for WordPress is... Moderate Unreviewed

CVE-2025-5816 was published Jul 18, 2025

Broken access control in Fortra's GoAnywhere MFT prior to 7.8.1 allows an attacker to create a... Moderate Unreviewed

CVE-2025-3871 was published Jul 16, 2025

Missing Authorization vulnerability in uxper Nuss allows Accessing Functionality Not Properly... High Unreviewed

CVE-2025-52804 was published Jul 16, 2025

Missing Authorization vulnerability in uxper Sala allows Accessing Functionality Not Properly... High Unreviewed

CVE-2025-52803 was published Jul 16, 2025

Missing Authorization vulnerability in CodeSolz Ultimate Push Notifications allows Exploiting... Moderate Unreviewed

CVE-2025-50028 was published Jul 16, 2025

Missing Authorization vulnerability in Md Yeasin Ul Haider URL Shortener allows Accessing... High Unreviewed

CVE-2025-28965 was published Jul 16, 2025

Missing Authorization vulnerability in August Infotech Multi-language Responsive Contact Form... High Unreviewed

CVE-2025-29000 was published Jul 16, 2025

Missing Authorization vulnerability in WPFactory Product XML Feed Manager for WooCommerce allows... Moderate Unreviewed

CVE-2025-30959 was published Jul 16, 2025

Missing Authorization vulnerability in activity-log.com Profiler - What Slowing Down Your WP... Moderate Unreviewed

CVE-2025-48339 was published Jul 16, 2025

Missing Authorization vulnerability in WPFactory Wishlist for WooCommerce allows Exploiting... Moderate Unreviewed

CVE-2025-49319 was published Jul 16, 2025

Missing Authorization vulnerability in alexvtn Internal Linking of Related Contents allows... Moderate Unreviewed

CVE-2025-49884 was published Jul 16, 2025

Missing Authorization vulnerability in pimwick PW WooCommerce On Sale! allows Exploiting... High Unreviewed

CVE-2025-49888 was published Jul 16, 2025

Previous 1 2 3 4 5 … 172 173 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,303 advisories