GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,324
Composer 4,360
Erlang 33
GitHub Actions 22
Go 2,127
Maven 5,308
npm 3,793
NuGet 683
pip 3,471
Pub 12
RubyGems 894
Rust 894
Swift 38

Unreviewed advisories

All unreviewed 244,810

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

123,746 advisories

Filter by severity

Sort by

Least recently updated

Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and... Moderate Unreviewed

CVE-2025-0822 was published Feb 15, 2025

The Responsive Plus – Starter Templates, Advanced Features and Customizer Settings for Responsive... Moderate Unreviewed

CVE-2024-13834 was published Feb 15, 2025

The WP Project Manager – Task, team, and project management plugin featuring kanban board and... Moderate Unreviewed

CVE-2024-13500 was published Feb 15, 2025

The Team – Team Members Showcase Plugin plugin for WordPress is vulnerable to unauthorized access... Moderate Unreviewed

CVE-2024-13439 was published Feb 15, 2025

The WP Project Manager – Task, team, and project management plugin featuring kanban board and... Moderate Unreviewed

CVE-2024-13752 was published Feb 15, 2025

The DirectoryPress Frontend plugin for WordPress is vulnerable to Cross-Site Request Forgery in... Moderate Unreviewed

CVE-2024-10581 was published Feb 15, 2025

The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-1005 was published Feb 15, 2025

The Media Library Folders plugin for WordPress is vulnerable to unauthorized plugin settings... Moderate Unreviewed

CVE-2025-0935 was published Feb 15, 2025

The Customer Email Verification for WooCommerce plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed

CVE-2024-13525 was published Feb 15, 2025

The Front End Users plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-13563 was published Feb 15, 2025

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Moderate Unreviewed

CVE-2025-21401 was published Feb 15, 2025

If Brocade Fabric OS before Fabric OS 9.2.0 configuration settings are not set to encrypt SNMP... Moderate Unreviewed

CVE-2024-5462 was published Feb 15, 2025

Brocade SANnav before SANnav 2.3.1b enables weak TLS ciphers on ports 443 and 18082. In case of... Moderate Unreviewed

CVE-2024-10405 was published Feb 15, 2025

Certain HP LaserJet Pro, HP LaserJet Enterprise, and HP LaserJet Managed Printers may potentially... Moderate Unreviewed

CVE-2025-26507 was published Feb 14, 2025

A SQL Injection vulnerability was found in /bpms/index.php in Source Code and Project Beauty... Moderate Unreviewed

CVE-2025-26157 was published Feb 14, 2025

A Stored Cross-Site Scripting (XSS) vulnerability was discovered in the manage-employee.php page... Moderate Unreviewed

CVE-2025-26158 was published Feb 14, 2025

SQL Injection vulnerability in FeMiner wms 1.0 allows a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2025-25992 was published Feb 14, 2025

Cross Site Scripting vulnerability in hooskcms v.1.8 allows a remote attacker to cause a denial... Moderate Unreviewed

CVE-2025-25988 was published Feb 14, 2025

Cross Site Scripting vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain... Moderate Unreviewed

CVE-2025-25990 was published Feb 14, 2025

SQL Injection vulnerability in FeMiner wms wms 1.0 allows a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2025-25993 was published Feb 14, 2025

SQL Injection vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2025-25991 was published Feb 14, 2025

SQL Injection vulnerability in FeMiner wms wms 1.0 allows a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2025-25994 was published Feb 14, 2025

IBM QRadar SIEM 7.5 is vulnerable to cross-site scripting. This vulnerability allows a privileged... Moderate Unreviewed

CVE-2024-56463 was published Feb 14, 2025

An issue in Orbe ONetView Roeador Onet-1200 Orbe 1680210096 allows a remote attacker to escalate... Moderate Unreviewed

CVE-2024-57778 was published Feb 14, 2025

An issue in the Arcadyan Livebox Fibra PRV3399B_B_LT allows a remote or local attacker to modify... Moderate Unreviewed

CVE-2024-57725 was published Feb 14, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

123,746 advisories