GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,196
Composer 4,342
Erlang 31
GitHub Actions 22
Go 2,106
Maven 5,283
npm 3,764
NuGet 679
pip 3,451
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,203

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

113,582 advisories

Filter by severity

Sort by

Least recently updated

Weaknesses in the generation of TCP/UDP source ports and some other header values in Google's... Moderate Unreviewed

CVE-2024-10603 was published Jan 30, 2025

An improper input validation the CSRF filter results in unsanitized user input written to the... Moderate Unreviewed

CVE-2025-24504 was published Jan 30, 2025

An improper input validation allows an unauthenticated attacker to alter PAM logs by sending a... Moderate Unreviewed

CVE-2025-24501 was published Jan 30, 2025

The Cloud MQTT service of the affected products supports wildcard topic subscription which could... Moderate Unreviewed

CVE-2025-0681 was published Jan 30, 2025

An improper session validation allows an unauthenticated attacker to cause certain request... Moderate Unreviewed

CVE-2025-24502 was published Jan 30, 2025

A vulnerability, which was classified as critical, has been found in code-projects Simple Plugins... Moderate Unreviewed

CVE-2025-0874 was published Jan 30, 2025

A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0.... Moderate Unreviewed

CVE-2025-0873 was published Jan 30, 2025

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.3, macOS... Moderate Unreviewed

CVE-2025-24099 was published Jan 30, 2025

In versions 3.1.0 and lower of the Splunk Supporting Add-on for Active Directory, also known as... Moderate Unreviewed

CVE-2025-0367 was published Jan 30, 2025

A vulnerability classified as critical has been found in itsourcecode Tailoring Management System... Moderate Unreviewed

CVE-2025-0872 was published Jan 30, 2025

VMware Aria Operation for Logs contains a stored cross-site scripting vulnerability. A malicious... Moderate Unreviewed

CVE-2025-22221 was published Jan 30, 2025

VMware Aria Operations for Logs contains a privilege escalation vulnerability. A malicious actor... Moderate Unreviewed

CVE-2025-22220 was published Jan 30, 2025

VMware Aria Operations for Logs contains a stored cross-site scripting vulnerability. A malicious... Moderate Unreviewed

CVE-2025-22219 was published Jan 30, 2025

A vulnerability classified as problematic has been found in Maybecms 1.2. This affects an unknown... Moderate Unreviewed

CVE-2025-0871 was published Jan 30, 2025

The WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress plugin for WordPress is... Moderate Unreviewed

CVE-2024-13596 was published Jan 30, 2025

The zStore Manager Basic plugin for WordPress is vulnerable to unauthorized loss of data due to a... Moderate Unreviewed

CVE-2024-13715 was published Jan 30, 2025

The StageShow plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use... Moderate Unreviewed

CVE-2024-13705 was published Jan 30, 2025

The ECPay Ecommerce for WooCommerce plugin for WordPress is vulnerable to unauthorized loss of... Moderate Unreviewed

CVE-2024-13652 was published Jan 30, 2025

The Elementor Website Builder Pro plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-8494 was published Jan 30, 2025

The Embed Swagger UI plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-13700 was published Jan 30, 2025

The WP Post List Table plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-13664 was published Jan 30, 2025

The Table Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed

CVE-2024-13661 was published Jan 30, 2025

The Music Sheet Viewer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-13670 was published Jan 30, 2025

The Team Rosters plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2024-12320 was published Jan 30, 2025

The System Dashboard plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-12299 was published Jan 30, 2025

Previous 1 2 3 4 5 6 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

113,582 advisories