Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,153
Maven
5,000+
npm
3,818
NuGet
693
pip
3,492
Pub
12
RubyGems
902
Rust
903
Swift
38
Unreviewed advisories
All unreviewed
5,000+

124,956 advisories

Loading
The Shortcode Cleaner Lite plugin for WordPress is vulnerable to unauthorized access of data due... Moderate Unreviewed
CVE-2025-1481 was published Mar 8, 2025
The Years Since – Timeless Texts plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-12460 was published Mar 8, 2025
The Wishlist for WooCommerce: Multi Wishlists Per Customer plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-13774 was published Mar 8, 2025
The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to DOM-Based... Moderate Unreviewed
CVE-2025-1261 was published Mar 8, 2025
qcp has possible crash/DOS in some build configurations Moderate
GHSA-fmwf-c46w-r8qm was published for qcp (Rust) Mar 8, 2025
A vulnerability was found in TOTOLINK EX1800T 9.1.0cu.2112_B20220316. It has been rated as... Moderate Unreviewed
CVE-2025-2094 was published Mar 8, 2025
A vulnerability classified as critical was found in TOTOLINK EX1800T 9.1.0cu.2112_B20220316. This... Moderate Unreviewed
CVE-2025-2096 was published Mar 8, 2025
An XSS issue was discovered in the Bootstrap Lite theme before 1.x-1.4.5 for Backdrop CMS. It... Moderate Unreviewed
CVE-2025-27826 was published Mar 8, 2025
A vulnerability classified as critical has been found in TOTOLINK EX1800T 9.1.0cu.2112_B20220316.... Moderate Unreviewed
CVE-2025-2095 was published Mar 8, 2025
An issue was discovered in the Mail Disguise module before 1.x-1.0.5 for Backdrop CMS. It enables... Moderate Unreviewed
CVE-2025-27823 was published Mar 8, 2025
An XSS issue was discovered in the Link iframe formatter module before 1.x-1.1.1 for Backdrop CMS... Moderate Unreviewed
CVE-2025-27824 was published Mar 8, 2025
An XSS issue was discovered in the Bootstrap 5 Lite theme before 1.x-1.0.3 for Backdrop CMS. It... Moderate Unreviewed
CVE-2025-27825 was published Mar 8, 2025
No cwe for this issue in Microsoft Edge (Chromium-based) allows an unauthorized attacker to... Moderate Unreviewed
CVE-2025-26643 was published Mar 7, 2025
In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix signed integer... Moderate Unreviewed
CVE-2022-49727 was published Mar 7, 2025
In the Linux kernel, the following vulnerability has been resolved: irqchip/apple-aic: Fix... Moderate Unreviewed
CVE-2022-49718 was published Mar 7, 2025
In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix signed integer... Moderate Unreviewed
CVE-2022-49728 was published Mar 7, 2025
In the Linux kernel, the following vulnerability has been resolved: irqchip/apple-aic: Fix... Moderate Unreviewed
CVE-2022-49717 was published Mar 7, 2025
In the Linux kernel, the following vulnerability has been resolved: irqchip/gic/realview: Fix... Moderate Unreviewed
CVE-2022-49719 was published Mar 7, 2025
In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: fix NULL... Moderate Unreviewed
CVE-2022-49731 was published Mar 7, 2025
In the Linux kernel, the following vulnerability has been resolved: nfc: nfcmrvl: Fix memory... Moderate Unreviewed
CVE-2022-49729 was published Mar 7, 2025
Crash due to uncontrolled recursion in protobuf crate Moderate
GHSA-2gh3-rmm4-6rq5 was published for protobuf (Rust) Mar 7, 2025
A server-side request forgery (SSRF) vulnerability has been reported to affect QuLog Center. If... Moderate Unreviewed
CVE-2024-53696 was published Mar 7, 2025
A command injection vulnerability has been reported to affect QHora. If exploited, the... Moderate Unreviewed
CVE-2024-53700 was published Mar 7, 2025
A buffer overflow vulnerability has been reported to affect HBS 3 Hybrid Backup Sync. If... Moderate Unreviewed
CVE-2024-53695 was published Mar 7, 2025
IBM Control Center 6.2.1 through 6.3.1 is vulnerable to HTTP header injection, caused by improper... Moderate Unreviewed
CVE-2023-35894 was published Mar 7, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database