Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

6,770 advisories

Loading
Permission verification vulnerability in the media library module Impact: Successful exploitation... Moderate Unreviewed
CVE-2024-58049 was published Mar 4, 2025
Permission verification vulnerability in the media library module Impact: Successful exploitation... Moderate Unreviewed
CVE-2024-58047 was published Mar 4, 2025
Vulnerability of unauthorized exposure of confidential information affecting Advanced IP Scanner... Moderate Unreviewed
CVE-2025-1868 was published Mar 3, 2025
The GenerateBlocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all... Moderate Unreviewed
CVE-2024-13546 was published Mar 1, 2025
GeoVision ASManager Windows desktop application with the version 6.1.2.0 or less, is vulnerable... Moderate Unreviewed
CVE-2025-26263 was published Feb 28, 2025
The Order Attachments for WooCommerce plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed
CVE-2024-13638 was published Feb 28, 2025
The Post Grid and Gutenberg Blocks – ComboBlocks plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed
CVE-2024-13796 was published Feb 28, 2025
In XIQ-SE before 24.2.11, a server misconfiguration may allow user enumeration when specific... Moderate Unreviewed
CVE-2024-38290 was published Feb 28, 2025
Rancher's SAML-based login via CLI can be denied by unauthenticated users Moderate
CVE-2025-23387 was published for github.com/rancher/rancher (Go) Feb 27, 2025
AnonySE26
Credited to AnonySE26
The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is... Moderate Unreviewed
CVE-2025-1063 was published Feb 25, 2025
A vulnerability classified as problematic was found in SourceCodester Best Employee Management... Moderate Unreviewed
CVE-2025-1606 was published Feb 24, 2025
A vulnerability has been found in Anhui Xufan Information Technology EasyCVR up to 2.7.0 and... Moderate Unreviewed
CVE-2025-1595 was published Feb 24, 2025
Nagios XI 2024R1.2.2 has an Information Disclosure vulnerability, which allows unauthenticated... Moderate Unreviewed
CVE-2024-54961 was published Feb 20, 2025
AutoQueryable leaks sensitive information Moderate
CVE-2024-57716 was published for AutoQueryable (NuGet) Feb 20, 2025
Multiple memory leaks have been identified in the ABC file parsing functions ... Moderate Unreviewed
CVE-2025-26310 was published Feb 20, 2025
A memory leak has been identified in the parseSWF_DEFINESCENEANDFRAMEDATA function in util/parser... Moderate Unreviewed
CVE-2025-26309 was published Feb 20, 2025
An issue in Bento4 v1.6.0-641 allows an attacker to cause a memory leak via Ap4Marlin.cpp and... Moderate Unreviewed
CVE-2025-25946 was published Feb 20, 2025
An issue in Bento4 v1.6.0-641 allows an attacker to obtain sensitive information via the the... Moderate Unreviewed
CVE-2025-25942 was published Feb 20, 2025
An issue in Bento4 v1.6.0-641 allows an attacker to obtain sensitive information via the the... Moderate Unreviewed
CVE-2025-25945 was published Feb 20, 2025
Certain Lexmark products through 2020-05-25 allow XSS which allows an attacker to obtain session... Moderate Unreviewed
CVE-2020-13481 was published Feb 19, 2025
A vulnerability in the debug shell of Cisco Video Phone 8875 and Cisco Desk Phone 9800 Series... Moderate Unreviewed
CVE-2025-20158 was published Feb 19, 2025
FFmpeg git-master before commit d5873b was discovered to contain a memory leak in the component... Moderate Unreviewed
CVE-2025-25468 was published Feb 19, 2025
The 1 Click WordPress Migration Plugin – 100% FREE for a limited time plugin for WordPress is... Moderate Unreviewed
CVE-2024-13609 was published Feb 18, 2025
The Customer Email Verification for WooCommerce plugin for WordPress is vulnerable to Sensitive... Moderate Unreviewed
CVE-2024-13525 was published Feb 15, 2025
The Return Refund and Exchange For WooCommerce – Return Management System, RMA Exchange, Wallet... Moderate Unreviewed
CVE-2024-13641 was published Feb 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database