GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,063
Composer 5,081
Erlang 40
GitHub Actions 38
Go 2,757
Maven 6,173
npm 4,364
NuGet 766
pip 4,128
Pub 12
RubyGems 961
Rust 1,070
Swift 45

Unreviewed advisories

All unreviewed 281,141

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

281,141 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Missing Authorization vulnerability in merkulove Lottier lottier-gutenberg allows Exploiting... Moderate Unreviewed

CVE-2025-66167 was published Dec 16, 2025

Missing Authorization vulnerability in WP Legal Pages WP Cookie Notice for GDPR, CCPA & ePrivacy... Moderate Unreviewed

CVE-2025-66133 was published Dec 16, 2025

Missing Authorization vulnerability in templateinvaders TI WooCommerce Wishlist ti-woocommerce... Moderate Unreviewed

CVE-2025-67929 was published Dec 16, 2025

Missing Authorization vulnerability in Syed Balkhi Feeds for YouTube feeds-for-youtube allows... Moderate Unreviewed

CVE-2025-64635 was published Dec 16, 2025

Missing Authorization vulnerability in Auctollo Google XML Sitemaps google-sitemap-generator... Moderate Unreviewed

CVE-2025-64632 was published Dec 16, 2025

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in... Moderate Unreviewed

CVE-2025-64633 was published Dec 16, 2025

Missing Authorization vulnerability in Strategy11 Team Business Directory business-directory... Unknown Unreviewed

CVE-2025-64630 was published Dec 16, 2025

Missing Authorization vulnerability in WC Lovers WCFM Marketplace wc-multivendor-marketplace... Unknown Unreviewed

CVE-2025-64631 was published Dec 16, 2025

Missing Authorization vulnerability in ThemeFusion Avada avada allows Accessing Functionality Not... Unknown Unreviewed

CVE-2025-64634 was published Dec 16, 2025

Path Traversal: '.../...//' vulnerability in WordPress.org Health Check & Troubleshooting health... Unknown Unreviewed

CVE-2025-64253 was published Dec 16, 2025

Missing Authorization vulnerability in ryanpcmcquen Import external attachments import-external... Moderate Unreviewed

CVE-2025-64245 was published Dec 16, 2025

Missing Authorization vulnerability in WP-EXPERTS.IN Protect WP Admin protect-wp-admin allows... Unknown Unreviewed

CVE-2025-64249 was published Dec 16, 2025

Missing Authorization vulnerability in emarket-design Request a Quote request-a-quote allows... Unknown Unreviewed

CVE-2025-64248 was published Dec 16, 2025

Missing Authorization vulnerability in azzaroco Ultimate Learning Pro indeed-learning-pro allows... Moderate Unreviewed

CVE-2025-64251 was published Dec 16, 2025

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in wpWax Directorist... Moderate Unreviewed

CVE-2025-64250 was published Dec 16, 2025

Missing Authorization vulnerability in netopsae Accessibility by AudioEye accessibility-by... Moderate Unreviewed

CVE-2025-64246 was published Dec 16, 2025

Missing Authorization vulnerability in edmon.parker Read More & Accordion expand-maker allows... Moderate Unreviewed

CVE-2025-64247 was published Dec 16, 2025

The JetFormBuilder — Dynamic Blocks Form Builder plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-11991 was published Dec 16, 2025

The Fancy Product Designer plugin for WordPress is vulnerable to Server-Side Request Forgery in... Moderate Unreviewed

CVE-2025-13231 was published Dec 16, 2025

The Fancy Product Designer plugin for WordPress is vulnerable to Information Disclosure in all... Moderate Unreviewed

CVE-2025-13439 was published Dec 16, 2025

Missing Authorization vulnerability in sonalsinha21 SKT Page Builder skt-builder allows... Moderate Unreviewed

CVE-2025-54005 was published Dec 16, 2025

Missing Authorization vulnerability in CreativeMindsSolutions CM On Demand Search And Replace cm... Moderate Unreviewed

CVE-2025-54045 was published Dec 16, 2025

Insertion of Sensitive Information Into Sent Data vulnerability in shinetheme Traveler Option... Low Unreviewed

CVE-2025-49300 was published Dec 16, 2025

HCL DevOps Deploy is susceptible to a cleartext transmission of sensitive information because the... Moderate Unreviewed

CVE-2025-62330 was published Dec 16, 2025

Missing Authorization vulnerability in Codexpert, Inc Restrict Elementor Widgets, Columns and... Moderate Unreviewed

CVE-2025-64244 was published Dec 16, 2025

Previous 1…14…400 Next

Previous 1 2 … 12 13 14 15 16 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

281,141 advisories