GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,196
Composer 4,342
Erlang 31
GitHub Actions 22
Go 2,106
Maven 5,283
npm 3,764
NuGet 679
pip 3,451
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,203

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

113,582 advisories

Filter by severity

Sort by

Least recently updated

The WP DataTable plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’... Moderate Unreviewed

CVE-2024-13566 was published Jan 31, 2025

The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is... Moderate Unreviewed

CVE-2024-13157 was published Jan 31, 2025

Server-Side Request Forgery (SSRF) vulnerability in NotFound Oshine Modules. This issue affects... Moderate Unreviewed

CVE-2024-44055 was published Jan 31, 2025

Missing Authorization vulnerability in mgplugin EMI Calculator allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-22265 was published Jan 31, 2025

The Order Export for WooCommerce plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-13623 was published Jan 31, 2025

Bentley Systems ProjectWise Integration Server before 10.00.03.288 allows unintended SQL query... Moderate Unreviewed

CVE-2024-53007 was published Jan 31, 2025

The Custom Login Page Styler – Limit Login Attempts – Restrict Content With Login – Redirect... Moderate Unreviewed

CVE-2024-13530 was published Jan 31, 2025

The Contact Form and Calls To Action by vcita plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed

CVE-2024-11886 was published Jan 31, 2025

The Ni Sales Commission For WooCommerce plugin for WordPress is vulnerable to unauthorized access... Moderate Unreviewed

CVE-2024-13424 was published Jan 31, 2025

The HT Event – WordPress Event Manager Plugin for Elementor plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13216 was published Jan 31, 2025

The Contact Form and Calls To Action by vcita plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-13717 was published Jan 31, 2025

The Food Menu – Restaurant Menu & Online Ordering for WooCommerce plugin for WordPress is... Moderate Unreviewed

CVE-2024-13415 was published Jan 31, 2025

The OPSI Israel Domestic Shipments WordPress plugin through 2.6.3 does not sanitise and escape a... Moderate Unreviewed

CVE-2024-13100 was published Jan 31, 2025

The SlideDeck 1 Lite Content Slider WordPress plugin through 1.4.8 does not sanitise and escape a... Moderate Unreviewed

CVE-2024-13224 was published Jan 31, 2025

The WP MediaTagger WordPress plugin through 4.1.1 does not validate and escape some of its... Moderate Unreviewed

CVE-2024-13101 was published Jan 31, 2025

The Canvasflow for WordPress plugin through 1.5.5 does not sanitise and escape a parameter before... Moderate Unreviewed

CVE-2024-12275 was published Jan 31, 2025

The Fantastic ElasticSearch WordPress plugin through 4.1.0 does not sanitise and escape a... Moderate Unreviewed

CVE-2024-13221 was published Jan 31, 2025

A UAA configured with multiple identity zones, does not properly validate session information... Moderate Unreviewed

CVE-2025-22216 was published Jan 31, 2025

The Tabulate WordPress plugin through 2.10.3 does not sanitise and escape some parameters before... Moderate Unreviewed

CVE-2024-13223 was published Jan 31, 2025

The WP MediaTagger WordPress plugin through 4.1.1 does not sanitise and escape a parameter before... Moderate Unreviewed

CVE-2024-13112 was published Jan 31, 2025

The A5 Custom Login Page WordPress plugin through 2.8.1 does not sanitise and escape a parameter... Moderate Unreviewed

CVE-2024-13226 was published Jan 31, 2025

The Fast Tube WordPress plugin through 2.3.1 does not sanitise and escape a parameter before... Moderate Unreviewed

CVE-2024-13218 was published Jan 31, 2025

The ECT Home Page Products WordPress plugin through 1.9 does not sanitise and escape a parameter... Moderate Unreviewed

CVE-2024-13225 was published Jan 31, 2025

The Zalomení WordPress plugin through 1.5 does not sanitise and escape some of its settings,... Moderate Unreviewed

CVE-2024-12872 was published Jan 31, 2025

The Privacy Policy Genius WordPress plugin through 2.0.4 does not sanitise and escape a parameter... Moderate Unreviewed

CVE-2024-13219 was published Jan 31, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

113,582 advisories