Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,750
Maven
5,000+
npm
4,353
NuGet
765
pip
4,114
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

145,500 advisories

Loading
A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function... Moderate Unreviewed
CVE-2025-14636 was published Dec 13, 2025
A weakness has been identified in itsourcecode Online Pet Shop Management System 1.0. This... Moderate Unreviewed
CVE-2025-14637 was published Dec 13, 2025
The TI WooCommerce Wishlist plugin for WordPress is vulnerable to HTML Injection in all versions... Moderate Unreviewed
CVE-2025-9207 was published Dec 13, 2025
The YITH WooCommerce Quick View plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2025-8617 was published Dec 13, 2025
The Popup Builder – Create highly converting, mobile friendly marketing popups. plugin for... Moderate Unreviewed
CVE-2025-9856 was published Dec 13, 2025
A vulnerability was identified in code-projects Student File Management System 1.0. This affects... Moderate Unreviewed
CVE-2025-14621 was published Dec 13, 2025
The MarqueeAddons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2025-8199 was published Dec 13, 2025
The Livemesh SiteOrigin Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2025-8780 was published Dec 13, 2025
The All-in-One Addons for Elementor – WidgetKit plugin for WordPress is vulnerable to Stored... Moderate Unreviewed
CVE-2025-8779 was published Dec 13, 2025
The a3 Lazy Load plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all... Moderate Unreviewed
CVE-2025-9873 was published Dec 13, 2025
A security flaw has been discovered in code-projects Student File Management System 1.0. This... Moderate Unreviewed
CVE-2025-14622 was published Dec 13, 2025
A weakness has been identified in code-projects Student File Management System 1.0. This issue... Moderate Unreviewed
CVE-2025-14623 was published Dec 13, 2025
The HAPPY – Helpdesk Support Ticket System plugin for WordPress is vulnerable to authorization... Moderate Unreviewed
CVE-2025-14581 was published Dec 13, 2025
A security vulnerability has been detected in code-projects Prison Management System 2.0.... Moderate Unreviewed
CVE-2025-14590 was published Dec 13, 2025
The MediaCommander – Bring Folders to Media, Posts, and Pages plugin for WordPress is vulnerable... Moderate Unreviewed
CVE-2025-14508 was published Dec 13, 2025
A vulnerability was found in code-projects Student File Management System 1.0. Affected by this... Moderate Unreviewed
CVE-2025-14619 was published Dec 13, 2025
A vulnerability has been found in Jehovahs Witnesses JW Library App up to 15.5.1 on Android.... Moderate Unreviewed
CVE-2025-14617 was published Dec 13, 2025
A vulnerability was determined in code-projects Student File Management System 1.0. Affected by... Moderate Unreviewed
CVE-2025-14620 was published Dec 13, 2025
The The Shortcode Ajax plugin for WordPress is vulnerable to arbitrary shortcode execution in all... Moderate Unreviewed
CVE-2025-14539 was published Dec 13, 2025
A vulnerability was identified in itsourcecode Online Pet Shop Management System 1.0. This... Moderate Unreviewed
CVE-2025-14587 was published Dec 13, 2025
A security flaw has been discovered in itsourcecode Student Management System 1.0. This... Moderate Unreviewed
CVE-2025-14588 was published Dec 13, 2025
The JetWidgets For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2025-8195 was published Dec 13, 2025
A vulnerability was detected in OFFIS DCMTK up to 3.6.9. Affected by this issue is the function... Moderate Unreviewed
CVE-2025-14607 was published Dec 13, 2025
The Redux Framework plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2025-9488 was published Dec 13, 2025
The King Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2025-7960 was published Dec 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database