GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,537
Composer 4,454
Erlang 33
GitHub Actions 22
Go 2,153
Maven 5,330
npm 3,818
NuGet 693
pip 3,492
Pub 12
RubyGems 902
Rust 903
Swift 38

Unreviewed advisories

All unreviewed 246,975

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

246,975 advisories

Filter by severity

Sort by

Least recently updated

The All-in-One Addons for Elementor – WidgetKit plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed

CVE-2024-10321 was published Mar 8, 2025

The Email Keep WordPress plugin through 1.1 does not sanitise and escape a parameter before... Unknown Unreviewed

CVE-2024-13825 was published Mar 8, 2025

The Post SMTP plugin for WordPress is vulnerable to generic SQL Injection via the ‘columns’... Moderate Unreviewed

CVE-2024-13844 was published Mar 8, 2025

The FooGallery – Responsive Photo Gallery, Image Viewer, Justified, Masonry & Carousel plugin for... Moderate Unreviewed

CVE-2024-12114 was published Mar 8, 2025

The Email Keep WordPress plugin through 1.1 does not have CSRF check in place when updating its... Unknown Unreviewed

CVE-2024-13826 was published Mar 8, 2025

The FooGallery – Responsive Photo Gallery, Image Viewer, Justified, Masonry & Carousel plugin for... Moderate Unreviewed

CVE-2024-12119 was published Mar 8, 2025

The Print Invoice & Delivery Notes for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13640 was published Mar 8, 2025

The Post Meta Data Manager plugin for WordPress is vulnerable to multisite privilege escalation... High Unreviewed

CVE-2024-13835 was published Mar 8, 2025

The The Code Snippets CPT plugin for WordPress is vulnerable to arbitrary shortcode execution in... Moderate Unreviewed

CVE-2024-13895 was published Mar 8, 2025

The Post Lockdown plugin for WordPress is vulnerable to Information Exposure in all versions up... Moderate Unreviewed

CVE-2025-1504 was published Mar 8, 2025

The Shortcode Cleaner Lite plugin for WordPress is vulnerable to unauthorized access of data due... Moderate Unreviewed

CVE-2025-1481 was published Mar 8, 2025

The Wishlist for WooCommerce: Multi Wishlists Per Customer plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13774 was published Mar 8, 2025

The Allow PHP Execute plugin for WordPress is vulnerable to PHP Code Injection in all versions up... High Unreviewed

CVE-2024-13890 was published Mar 8, 2025

The Years Since – Timeless Texts plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-12460 was published Mar 8, 2025

The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to DOM-Based... Moderate Unreviewed

CVE-2025-1261 was published Mar 8, 2025

operations/attestation/AttestationTask.kt in the Tangem SDK before 5.18.3 for Android has a logic... Low Unreviewed

CVE-2025-27839 was published Mar 8, 2025

A vulnerability, which was classified as critical, has been found in TOTOLINK EX1800T 9.1.0cu... High Unreviewed

CVE-2025-2097 was published Mar 8, 2025

A vulnerability was found in TOTOLINK EX1800T 9.1.0cu.2112_B20220316. It has been rated as... Moderate Unreviewed

CVE-2025-2094 was published Mar 8, 2025

A vulnerability classified as critical was found in TOTOLINK EX1800T 9.1.0cu.2112_B20220316. This... Moderate Unreviewed

CVE-2025-2096 was published Mar 8, 2025

A vulnerability was found in PHPGurukul Online Library Management System 3.0. It has been... Low Unreviewed

CVE-2025-2093 was published Mar 8, 2025

An XSS issue was discovered in the Bootstrap Lite theme before 1.x-1.4.5 for Backdrop CMS. It... Moderate Unreviewed

CVE-2025-27826 was published Mar 8, 2025

A vulnerability classified as critical has been found in TOTOLINK EX1800T 9.1.0cu.2112_B20220316.... Moderate Unreviewed

CVE-2025-2095 was published Mar 8, 2025

An issue was discovered in the Mail Disguise module before 1.x-1.0.5 for Backdrop CMS. It enables... Moderate Unreviewed

CVE-2025-27823 was published Mar 8, 2025

An XSS issue was discovered in the Link iframe formatter module before 1.x-1.1.1 for Backdrop CMS... Moderate Unreviewed

CVE-2025-27824 was published Mar 8, 2025

An XSS issue was discovered in the Bootstrap 5 Lite theme before 1.x-1.0.3 for Backdrop CMS. It... Moderate Unreviewed

CVE-2025-27825 was published Mar 8, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

246,975 advisories