GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,078
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,079
Maven 5,250
npm 3,747
NuGet 674
pip 3,435
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,294

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

112,564 advisories

Filter by severity

Sort by

Least recently updated

Vulnerability in the PMB platform that allows an attacker to persist temporary files on the... Moderate Unreviewed

CVE-2025-0473 was published Jan 16, 2025

The Admin and Customer Messages After Order for WooCommerce: OrderConvo plugin for WordPress is... Moderate Unreviewed

CVE-2024-13355 was published Jan 16, 2025

The WP Responsive Tabs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-13387 was published Jan 16, 2025

The Multi Step Form plugin for WordPress is vulnerable to unauthorized limited file upload due to... Moderate Unreviewed

CVE-2024-12427 was published Jan 16, 2025

The Passwords Manager plugin for WordPress is vulnerable to SQL Injection via the $wpdb->prefix... Moderate Unreviewed

CVE-2024-12615 was published Jan 16, 2025

In affected versions of the Octopus Kubernetes worker or agent, sensitive variables could be... Moderate Unreviewed

CVE-2024-12226 was published Jan 16, 2025

A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet... Moderate Unreviewed

CVE-2024-48885 was published Jan 16, 2025

The WP User Profile Avatar plugin for WordPress is vulnerable to Cross-Site Request Forgery in... Moderate Unreviewed

CVE-2024-10789 was published Jan 16, 2025

The Chamber Dashboard Business Directory plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-11452 was published Jan 16, 2025

The DWT - Directory & Listing WordPress Theme is vulnerable to Reflected Cross-Site Scripting in... Moderate Unreviewed

CVE-2025-0170 was published Jan 16, 2025

The The Motors – Car Dealer, Classifieds & Listing plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-10970 was published Jan 16, 2025

Mattermost Mobile Apps versions <=2.22.0 fail to properly handle specially crafted attachment... Moderate Unreviewed

CVE-2025-0476 was published Jan 16, 2025

A vulnerability, which was classified as critical, has been found in Fanli2012 native-php-cms 1.0... Moderate Unreviewed

CVE-2025-0490 was published Jan 16, 2025

The UpdraftPlus: WP Backup & Migration Plugin plugin for WordPress is vulnerable to Reflected... Moderate Unreviewed

CVE-2025-0215 was published Jan 16, 2025

A vulnerability classified as critical was found in Fanli2012 native-php-cms 1.0. This... Moderate Unreviewed

CVE-2025-0489 was published Jan 16, 2025

A vulnerability, which was classified as critical, was found in Fanli2012 native-php-cms 1.0.... Moderate Unreviewed

CVE-2025-0491 was published Jan 16, 2025

A vulnerability classified as critical has been found in Fanli2012 native-php-cms 1.0. This... Moderate Unreviewed

CVE-2025-0488 was published Jan 15, 2025

A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been rated as critical.... Moderate Unreviewed

CVE-2025-0487 was published Jan 15, 2025

A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been declared as critical.... Moderate Unreviewed

CVE-2025-0486 was published Jan 15, 2025

A vulnerability has been found in Fanli2012 native-php-cms 1.0 and classified as problematic.... Moderate Unreviewed

CVE-2025-0483 was published Jan 15, 2025

A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been classified as problematic.... Moderate Unreviewed

CVE-2025-0485 was published Jan 15, 2025

A vulnerability, which was classified as critical, was found in Fanli2012 native-php-cms 1.0.... Moderate Unreviewed

CVE-2025-0482 was published Jan 15, 2025

A vulnerability was found in Fanli2012 native-php-cms 1.0 and classified as critical. This issue... Moderate Unreviewed

CVE-2025-0484 was published Jan 15, 2025

The issue was addressed with improved input sanitization. This issue is fixed in Apple Music 1.5... Moderate Unreviewed

CVE-2024-54540 was published Jan 15, 2025

A vulnerability classified as problematic has been found in D-Link DIR-878 1.03. Affected is an... Moderate Unreviewed

CVE-2025-0481 was published Jan 15, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

112,564 advisories