Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,462
Erlang
33
GitHub Actions
22
Go
2,159
Maven
5,000+
npm
3,820
NuGet
696
pip
3,502
Pub
12
RubyGems
903
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

115,836 advisories

Loading
Cross-Site Request Forgery (CSRF) vulnerability in A. Chappard Display Template Name allows Cross... Moderate Unreviewed
CVE-2025-28927 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28919 was published Mar 11, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Aftab Ali Muni WP Add Active Class To Menu... Moderate Unreviewed
CVE-2025-28913 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28918 was published Mar 11, 2025
Cross-Site Request Forgery (CSRF) vulnerability in edwardw WP No-Bot Question allows Cross Site... Moderate Unreviewed
CVE-2025-28909 was published Mar 11, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Ravinder Khurana WP Hide Admin Bar allows... Moderate Unreviewed
CVE-2025-28910 was published Mar 11, 2025
Missing Authorization vulnerability in Jogesh Responsive Google Map allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-28920 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28926 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28914 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28937 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28930 was published Mar 11, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Fastmover Plugins Last Updated Column allows... Moderate Unreviewed
CVE-2025-28887 was published Mar 11, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Rajesh Kumar WP Bulk Post Duplicator allows... Moderate Unreviewed
CVE-2025-28884 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28875 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28878 was published Mar 11, 2025
Cross-Site Request Forgery (CSRF) vulnerability in xjb REST API TO MiniProgram allows Cross Site... Moderate Unreviewed
CVE-2025-28886 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28907 was published Mar 11, 2025
Authorization Bypass Through User-Controlled Key vulnerability in shanebp BP Email Assign... Moderate Unreviewed
CVE-2025-28874 was published Mar 11, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Benjamin Pick Contact Form 7 Select Box Editor... Moderate Unreviewed
CVE-2025-28902 was published Mar 11, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Skrill_Team Skrill Official allows Cross Site... Moderate Unreviewed
CVE-2025-28876 was published Mar 11, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Akshar Soft Solutions AS... Moderate Unreviewed
CVE-2025-28896 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28879 was published Mar 11, 2025
Cross-Site Request Forgery (CSRF) vulnerability in mg12 Mobile Themes allows Cross Site Request... Moderate Unreviewed
CVE-2025-28881 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28906 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28871 was published Mar 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database