GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,028
Composer 5,080
Erlang 39
GitHub Actions 38
Go 2,750
Maven 6,169
npm 4,353
NuGet 765
pip 4,114
Pub 12
RubyGems 960
Rust 1,069
Swift 45

Unreviewed advisories

All unreviewed 280,587

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

145,500 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function... Moderate Unreviewed

CVE-2025-14636 was published Dec 13, 2025

A weakness has been identified in itsourcecode Online Pet Shop Management System 1.0. This... Moderate Unreviewed

CVE-2025-14637 was published Dec 13, 2025

A vulnerability was determined in code-projects Student File Management System 1.0. Affected by... Moderate Unreviewed

CVE-2025-14620 was published Dec 13, 2025

The JetWidgets For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-8195 was published Dec 13, 2025

A vulnerability was detected in OFFIS DCMTK up to 3.6.9. Affected by this issue is the function... Moderate Unreviewed

CVE-2025-14607 was published Dec 13, 2025

The Redux Framework plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2025-9488 was published Dec 13, 2025

The King Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-7960 was published Dec 13, 2025

The TI WooCommerce Wishlist plugin for WordPress is vulnerable to HTML Injection in all versions... Moderate Unreviewed

CVE-2025-9207 was published Dec 13, 2025

The YITH WooCommerce Quick View plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-8617 was published Dec 13, 2025

The Kingcabs theme for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2025-7058 was published Dec 13, 2025

The Popup Builder – Create highly converting, mobile friendly marketing popups. plugin for... Moderate Unreviewed

CVE-2025-9856 was published Dec 13, 2025

A vulnerability was identified in code-projects Student File Management System 1.0. This affects... Moderate Unreviewed

CVE-2025-14621 was published Dec 13, 2025

The MarqueeAddons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-8199 was published Dec 13, 2025

The Livemesh SiteOrigin Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-8780 was published Dec 13, 2025

The Enter Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed

CVE-2025-8687 was published Dec 13, 2025

The All-in-One Addons for Elementor – WidgetKit plugin for WordPress is vulnerable to Stored... Moderate Unreviewed

CVE-2025-8779 was published Dec 13, 2025

The a3 Lazy Load plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all... Moderate Unreviewed

CVE-2025-9873 was published Dec 13, 2025

A security flaw has been discovered in code-projects Student File Management System 1.0. This... Moderate Unreviewed

CVE-2025-14622 was published Dec 13, 2025

A weakness has been identified in code-projects Student File Management System 1.0. This issue... Moderate Unreviewed

CVE-2025-14623 was published Dec 13, 2025

The Lucky Draw Contests plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2025-14462 was published Dec 13, 2025

The Easy Theme Options plugin for WordPress is vulnerable to Missing Authorization in all... Moderate Unreviewed

CVE-2025-14367 was published Dec 13, 2025

The Popup Builder (Easy Notify Lite) plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2025-14446 was published Dec 13, 2025

The Quick Testimonials plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-14378 was published Dec 13, 2025

The HAPPY – Helpdesk Support Ticket System plugin for WordPress is vulnerable to authorization... Moderate Unreviewed

CVE-2025-14581 was published Dec 13, 2025

The Popover Windows plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions... Moderate Unreviewed

CVE-2025-14394 was published Dec 13, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

145,500 advisories