GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,194
Composer 4,342
Erlang 31
GitHub Actions 22
Go 2,106
Maven 5,281
npm 3,764
NuGet 679
pip 3,451
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,182

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

243,182 advisories

Filter by severity

Sort by

Least recently updated

The Ninja Tables WordPress plugin before 5.0.17 does not sanitize and escape a parameter before... Unknown Unreviewed

CVE-2024-12772 was published Jan 31, 2025

The WP MediaTagger WordPress plugin through 4.1.1 does not sanitise and escape a parameter before... Unknown Unreviewed

CVE-2024-13112 was published Jan 31, 2025

The WordPress Google Map Professional (Map In Your Language) WordPress plugin through 1.0 does... Unknown Unreviewed

CVE-2024-13220 was published Jan 31, 2025

The Contact Form and Calls To Action by vcita plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed

CVE-2024-11886 was published Jan 31, 2025

The Fantastic ElasticSearch WordPress plugin through 4.1.0 does not sanitise and escape a... Unknown Unreviewed

CVE-2024-13221 was published Jan 31, 2025

The User Messages WordPress plugin through 1.2.4 does not sanitise and escape a parameter before... Unknown Unreviewed

CVE-2024-13222 was published Jan 31, 2025

The SlideDeck 1 Lite Content Slider WordPress plugin through 1.4.8 does not sanitise and escape a... Unknown Unreviewed

CVE-2024-13224 was published Jan 31, 2025

The Shared Files – Frontend File Upload Form & Secure File Sharing plugin for WordPress is... High Unreviewed

CVE-2024-13504 was published Jan 31, 2025

The Ni Sales Commission For WooCommerce plugin for WordPress is vulnerable to unauthorized access... Moderate Unreviewed

CVE-2024-13424 was published Jan 31, 2025

The ECT Home Page Products WordPress plugin through 1.9 does not sanitise and escape a parameter... Unknown Unreviewed

CVE-2024-13225 was published Jan 31, 2025

The Link Fixer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via broken links... High Unreviewed

CVE-2025-0809 was published Jan 31, 2025

A UAA configured with multiple identity zones, does not properly validate session information... Moderate Unreviewed

CVE-2025-22216 was published Jan 31, 2025

The Canvasflow for WordPress plugin through 1.5.5 does not sanitise and escape a parameter before... Unknown Unreviewed

CVE-2024-12275 was published Jan 31, 2025

The Privacy Policy Genius WordPress plugin through 2.0.4 does not sanitise and escape a parameter... Unknown Unreviewed

CVE-2024-13219 was published Jan 31, 2025

The Fast Tube WordPress plugin through 2.3.1 does not sanitise and escape a parameter before... Unknown Unreviewed

CVE-2024-13218 was published Jan 31, 2025

The HT Event – WordPress Event Manager Plugin for Elementor plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13216 was published Jan 31, 2025

The A5 Custom Login Page WordPress plugin through 2.8.1 does not sanitise and escape a parameter... Unknown Unreviewed

CVE-2024-13226 was published Jan 31, 2025

The Tabulate WordPress plugin through 2.10.3 does not sanitise and escape some parameters before... Unknown Unreviewed

CVE-2024-13223 was published Jan 31, 2025

The Contact Form and Calls To Action by vcita plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-13717 was published Jan 31, 2025

The Food Menu – Restaurant Menu & Online Ordering for WooCommerce plugin for WordPress is... Moderate Unreviewed

CVE-2024-13415 was published Jan 31, 2025

The Forminator Forms – Contact Form, Payment Form & Custom Form Builder plugin for WordPress is... Moderate Unreviewed

CVE-2025-0470 was published Jan 31, 2025

Software installed and run as a non-privileged user may conduct improper GPU system calls to... Unknown Unreviewed

CVE-2024-47900 was published Jan 31, 2025

The MultiVendorX – The Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress... Critical Unreviewed

CVE-2025-0493 was published Jan 31, 2025

The Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin for... Moderate Unreviewed

CVE-2024-10867 was published Jan 31, 2025

The Ticketmeo – Sell Tickets – Event Ticketing plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed

CVE-2025-0507 was published Jan 31, 2025

Previous 1 2 3 4 5 6 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

243,182 advisories