Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,153
Maven
5,000+
npm
3,818
NuGet
693
pip
3,492
Pub
12
RubyGems
902
Rust
903
Swift
38
Unreviewed advisories
All unreviewed
5,000+

268,511 advisories

Loading
A vulnerability was found in user-xiangpeng yaoqishan up to... Moderate Unreviewed
CVE-2025-2112 was published Mar 9, 2025
MariaDB Server 10.4 through 10.5.*, 10.6 through 10.6.*, 10.7 through 10.11.*, and 11.0 through... Moderate Unreviewed
CVE-2023-52969 was published Mar 9, 2025
MariaDB Server 10.4 before 10.4.33, 10.5 before 10.5.24, 10.6 before 10.6.17, 10.7 through 10.11... Moderate Unreviewed
CVE-2023-52968 was published Mar 9, 2025
MariaDB Server 10.10 through 10.11.* and 11.0 through 11.4.* crashes in JOIN:... Moderate Unreviewed
CVE-2023-52971 was published Mar 9, 2025
MariaDB Server 10.4 through 10.5.*, 10.6 through 10.6.*, 10.7 through 10.11.*, 11.0 through 11.0.... Moderate Unreviewed
CVE-2023-52970 was published Mar 9, 2025
Espressif ESP32 chips allow 29 hidden HCI commands, such as 0xFC02 (Write memory). Moderate Unreviewed
CVE-2025-27840 was published Mar 8, 2025
The Starter Templates by FancyWP plugin for WordPress is vulnerable to Blind Server-Side Request... Moderate Unreviewed
CVE-2024-13924 was published Mar 8, 2025
The RomethemeKit For Elementor plugin for WordPress is vulnerable to unauthorized modification of... Moderate Unreviewed
CVE-2024-10326 was published Mar 8, 2025
The Gallery Styles plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2025-1783 was published Mar 8, 2025
The SlingBlocks – Gutenberg Blocks by FunnelKit (Formerly WooFunnels) plugin for WordPress is... Moderate Unreviewed
CVE-2024-13675 was published Mar 8, 2025
The 140+ Widgets | Xpro Addons For Elementor – FREE plugin for WordPress is vulnerable to Stored... Moderate Unreviewed
CVE-2024-13649 was published Mar 8, 2025
The VikRentCar Car Rental Management System plugin for WordPress is vulnerable to Cross-Site... High Unreviewed
CVE-2024-11640 was published Mar 8, 2025
The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-1324 was published Mar 8, 2025
The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-1325 was published Mar 8, 2025
The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress... Moderate Unreviewed
CVE-2025-1664 was published Mar 8, 2025
The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-1322 was published Mar 8, 2025
The Product Input Fields for WooCommerce plugin for WordPress is vulnerable to arbitrary file... High Unreviewed
CVE-2024-13359 was published Mar 8, 2025
The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to SQL... High Unreviewed
CVE-2025-1323 was published Mar 8, 2025
The The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu,... Moderate Unreviewed
CVE-2025-1287 was published Mar 8, 2025
The Javo Core plugin for WordPress is vulnerable to privilege escalation in all versions up to,... Critical Unreviewed
CVE-2025-0177 was published Mar 8, 2025
The miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) Pro Addon plugin... High Unreviewed
CVE-2024-11087 was published Mar 8, 2025
The Aiomatic - Automatic AI Content Writer & Editor, GPT-3 & GPT-4, ChatGPT ChatBot & AI Toolkit... Moderate Unreviewed
CVE-2024-13816 was published Mar 8, 2025
The SMTP by BestWebSoft plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-13908 was published Mar 8, 2025
The Aiomatic - Automatic AI Content Writer & Editor, GPT-3 & GPT-4, ChatGPT ChatBot & AI Toolkit... High Unreviewed
CVE-2024-13882 was published Mar 8, 2025
The All-in-One Addons for Elementor – WidgetKit plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed
CVE-2024-10321 was published Mar 8, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database