GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,668
Composer 5,154
Erlang 40
GitHub Actions 38
Go 2,880
Maven 6,234
npm 4,518
NuGet 784
pip 4,260
Pub 12
RubyGems 975
Rust 1,105
Swift 49

Unreviewed advisories

All unreviewed 287,544

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

287,544 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Improper Restriction of Rendered UI Layers or Frames vulnerability in Shopside Software... Moderate Unreviewed

CVE-2025-0421 was published Nov 19, 2025

Open Redirect in URL parameter in Automated Logic WebCTRL and Carrier i-Vu versions 6.0, 6.5, 7.0... High Unreviewed

CVE-2024-8527 was published Nov 19, 2025

Reflected XSS using a specific URL in Automated Logic WebCTRL and Carrier i-VU can allow delivery... Moderate Unreviewed

CVE-2024-8528 was published Nov 19, 2025

The Axel Technology WOLF1MS and WOLF2MS devices (firmware versions 0.8.5 to 1.0.3) are vulnerable... Critical Unreviewed

CVE-2025-63218 was published Nov 19, 2025

The ITEL ISO FM SFN Adapter (firmware ISO2 2.0.0.0, WebServer 2.0) is vulnerable to session... High Unreviewed

CVE-2025-63219 was published Nov 19, 2025

A reflected cross-site scripting (XSS) vulnerability exists in the password change functionality... Moderate Unreviewed

CVE-2025-63243 was published Nov 19, 2025

A security flaw has been discovered in codehub666 94list up to... Moderate Unreviewed

CVE-2025-13395 was published Nov 19, 2025

An attacker with a Looker Developer role could manipulate a LookML project to exploit a race... High Unreviewed

CVE-2025-12472 was published Nov 19, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-10437 was published Nov 19, 2025

Rejected reason: Voluntarily withdrawn Unknown Unreviewed

CVE-2025-0351 was published Nov 19, 2025

Inefficient algorithm complexity in mjson in HAProxy allows remote attackers to cause a denial of... High Unreviewed

CVE-2025-11230 was published Nov 19, 2025

A improper neutralization of script-related html tags in a web page (basic xss) vulnerability in... Moderate Unreviewed

CVE-2025-58412 was published Nov 19, 2025

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-13206 was published Nov 19, 2025

The Code Snippets plugin for WordPress is vulnerable to PHP Code Injection in all versions up to,... High Unreviewed

CVE-2025-13035 was published Nov 19, 2025

The SiteSEO – SEO Simplified plugin for WordPress is vulnerable to Improper Authorization leading... Moderate Unreviewed

CVE-2025-13085 was published Nov 19, 2025

Insertion of Sensitive Information into Log File vulnerability in upKeeper Solutions upKeeper... High Unreviewed

CVE-2025-11446 was published Nov 19, 2025

The Giveaways and Contests by RafflePress – Get More Website Traffic, Email Subscribers, and... High Unreviewed

CVE-2025-12484 was published Nov 19, 2025

The SureForms plugin for WordPress is vulnerable to Cross-Site Request Forgery Bypass in all... Moderate Unreviewed

CVE-2025-12535 was published Nov 19, 2025

Out-of-bounds Read in Shelly Pro 3EM (before v1.4.4) allows Overread Buffers. High Unreviewed

CVE-2025-12056 was published Nov 19, 2025

Allocation of Resources Without Limits or Throttling vulnerability in Shelly Pro 4PM (before v1.6... High Unreviewed

CVE-2025-11243 was published Nov 19, 2025

The Booking Plugin for WordPress Appointments – Time Slot plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-12842 was published Nov 19, 2025

The WP Login and Register using JWT plugin for WordPress is vulnerable to unauthorized access of... Moderate Unreviewed

CVE-2025-12822 was published Nov 19, 2025

The FunnelKit – Funnel Builder for WooCommerce Checkout plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-12878 was published Nov 19, 2025

The WP Import – Ultimate CSV XML Importer for WordPress plugin for WordPress is vulnerable to PHP... High Unreviewed

CVE-2025-13145 was published Nov 19, 2025

The User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor... Moderate Unreviewed

CVE-2025-13054 was published Nov 19, 2025

Previous 1…400Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

287,544 advisories