GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,138
Composer 4,885
Erlang 37
GitHub Actions 38
Go 2,546
Maven 6,004
npm 4,212
NuGet 744
pip 3,988
Pub 12
RubyGems 950
Rust 1,038
Swift 45

Unreviewed advisories

All unreviewed 272,705

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

37,546 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Meks Easy Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the post... Moderate Unreviewed

CVE-2025-9206 was published Oct 3, 2025

The Ultimate Multi Design Video Carousel plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-9372 was published Oct 3, 2025

The Event Tickets, RSVPs, Calendar plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-9875 was published Oct 3, 2025

The A Simple Multilanguage Plugin plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-9854 was published Oct 3, 2025

The Ird Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's... Moderate Unreviewed

CVE-2025-9876 was published Oct 3, 2025

The Auto Bulb Finder for WordPress plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-9858 was published Oct 3, 2025

The Fintelligence Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-9859 was published Oct 3, 2025

The Smart Docs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin... Moderate Unreviewed

CVE-2025-9333 was published Oct 3, 2025

The Interactive Human Anatomy with Clickable Body Parts plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-9332 was published Oct 3, 2025

The Generic Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-9080 was published Oct 3, 2025

The Ultra Addons Lite for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-9077 was published Oct 3, 2025

The Easy Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-9045 was published Oct 3, 2025

The Flexi plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin for... Moderate Unreviewed

CVE-2025-9129 was published Oct 3, 2025

The Unify plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin for... Moderate Unreviewed

CVE-2025-9130 was published Oct 3, 2025

The Epic Bootstrap Buttons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-8776 was published Oct 3, 2025

The WP Photo Effects plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-10192 was published Oct 3, 2025

The AP Background plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-10165 was published Oct 3, 2025

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2025-0876 was published Oct 3, 2025

The TableGen – Data Table Generator plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-10053 was published Oct 3, 2025

CVE-2025-54089 is a cross-site scripting vulnerability in versions of secure access prior to 14... Moderate Unreviewed

CVE-2025-54089 was published Oct 2, 2025

htmly v3.0.8 is vulnerable to Cross Site Scripting (XSS) in the /author/:name endpoint of the... Moderate Unreviewed

CVE-2025-56154 was published Oct 2, 2025

PHP Education Manager v1.0 is vulnerable to Cross Site Scripting (XSS) stored Cross-Site... Moderate Unreviewed

CVE-2025-60782 was published Oct 2, 2025

SourceCodester Pet Grooming Management Software 1.0 is vulnerable to Cross Site Scripting (XSS)... Moderate Unreviewed

CVE-2025-61087 was published Oct 2, 2025

Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability... Moderate Unreviewed

CVE-2025-59770 was published Oct 2, 2025

Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability... Moderate Unreviewed

CVE-2025-59772 was published Oct 2, 2025

Previous 1…4…400 Next

Previous 1 2 3 4 5 6 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

37,546 advisories