GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,438
Composer 4,411
Erlang 33
GitHub Actions 22
Go 2,146
Maven 5,316
npm 3,808
NuGet 687
pip 3,481
Pub 12
RubyGems 897
Rust 899
Swift 38

Unreviewed advisories

All unreviewed 246,057

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

246,057 advisories

Filter by severity

Sort by

Least recently updated

In elisp-mode.el in GNU Emacs through 30.0.92, a user who chooses to invoke elisp-completion-at... Critical Unreviewed

CVE-2024-53920 was published Nov 27, 2024

The Fluent Support – Helpdesk & Customer Support Ticket System plugin for WordPress is vulnerable... High Unreviewed

CVE-2024-13568 was published Mar 1, 2025

The Counter Box: Add Engaging Countdowns, Timers & Counters to Your WordPress Site plugin for... Moderate Unreviewed

CVE-2024-13901 was published Mar 1, 2025

The Booking Calendar and Notification plugin for WordPress is vulnerable to unauthorized access,... Moderate Unreviewed

CVE-2024-13746 was published Mar 1, 2025

The SKU Generator for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed

CVE-2024-9212 was published Mar 1, 2025

The Multilevel Referral Affiliate Plugin for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13750 was published Mar 1, 2025

The Clicface Trombi plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2025-0820 was published Mar 1, 2025

The TemplatesNext ToolKit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-13559 was published Mar 1, 2025

The Currency Switcher for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed

CVE-2024-9217 was published Mar 1, 2025

The BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages plugin for... Moderate Unreviewed

CVE-2025-1780 was published Mar 1, 2025

The BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages plugin for... Moderate Unreviewed

CVE-2024-13358 was published Mar 1, 2025

The Simple:Press Forum plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2024-13518 was published Mar 1, 2025

A flaw was found in the Emacs text editor. Improper handling of custom "man" URI schemes allows... High Unreviewed

CVE-2025-1244 was published Feb 12, 2025

ToDesktop before 2024-10-03, as used by Cursor before 2024-10-03 and other applications, allows... Critical Unreviewed

CVE-2025-27554 was published Mar 1, 2025

The Brizy – Page Builder plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2024-6254 was published Aug 8, 2024

An attacker could retrieve sensitive files (medical images) as well as plant new medical images... High Unreviewed

CVE-2024-33606 was published Jun 11, 2024

The Fuse Social Floating Sidebar plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-5226 was published Aug 8, 2024

The Hash Form – Drag & Drop Form Builder plugin for WordPress is vulnerable to PHP Object... High Unreviewed

CVE-2024-5085 was published May 23, 2024

The storage controllers on VMware ESXi, Workstation, and Fusion have out-of-bounds read/write... High Unreviewed

CVE-2024-22273 was published May 21, 2024

In the Linux kernel, the following vulnerability has been resolved: usb: musb: dsps: Fix the... Moderate Unreviewed

CVE-2021-47436 was published May 22, 2024

An Improper Neutralization of Escape Sequences vulnerability could allow an Authentication Bypass... High Unreviewed

CVE-2025-23119 was published Mar 1, 2025

An Authentication Bypass vulnerability on UniFi Protect Application with Auto-Adopt Bridge... Critical Unreviewed

CVE-2025-23116 was published Mar 1, 2025

A Use After Free vulnerability on UniFi Protect Cameras could allow a Remote Code Execution (RCE)... Critical Unreviewed

CVE-2025-23115 was published Mar 1, 2025

An Insufficient Firmware Update Validation vulnerability could allow an authenticated malicious... Unknown Unreviewed

CVE-2025-23117 was published Mar 1, 2025

An Improper Certificate Validation vulnerability could allow an authenticated malicious actor... Moderate Unreviewed

CVE-2025-23118 was published Mar 1, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

246,057 advisories