GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,028
Composer 5,080
Erlang 39
GitHub Actions 38
Go 2,750
Maven 6,169
npm 4,353
NuGet 765
pip 4,114
Pub 12
RubyGems 960
Rust 1,069
Swift 45

Unreviewed advisories

All unreviewed 280,667

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

145,558 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A Reflected XSS vulnerability in DJ-Reviews component 1.0-1.3.6 for Joomla was discovered. Moderate Unreviewed

CVE-2025-54295 was published Jul 23, 2025

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in HotelRunner B2B allows... Moderate Unreviewed

CVE-2025-4296 was published Jul 23, 2025

IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2... Moderate Unreviewed

CVE-2024-41750 was published Jul 23, 2025

Zohocorp ManageEngine Applications Manager versions 176600 and prior are vulnerable to stored... Moderate Unreviewed

CVE-2025-27930 was published Jul 23, 2025

IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2... Moderate Unreviewed

CVE-2024-40686 was published Jul 23, 2025

IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2... Moderate Unreviewed

CVE-2024-40682 was published Jul 23, 2025

The Qwizcards | online quizzes and flashcards WordPress plugin through 3.9.4 does not sanitise... Moderate Unreviewed

CVE-2025-6174 was published Jul 23, 2025

Improper neutralization of input during web page generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2024-53288 was published Jul 23, 2025

Improper neutralization of input during web page generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2024-53287 was published Jul 23, 2025

SAP FICA ODN framework allows a high privileged user to inject value inside the local variable... Moderate Unreviewed

CVE-2025-42947 was published Jul 23, 2025

Improper validation of specified quantity in input issue exists in Real-time Bus Tracking System... Moderate Unreviewed

CVE-2025-43881 was published Jul 23, 2025

The Omnishop plugin for WordPress is vulnerable to Unauthenticated Registration Bypass in all... Moderate Unreviewed

CVE-2025-6215 was published Jul 23, 2025

The Fleetwire Fleet Management plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-6261 was published Jul 23, 2025

The Omnishop plugin for WordPress is vulnerable to Cross-Site Request Forgery on its /users... Moderate Unreviewed

CVE-2025-6214 was published Jul 23, 2025

The Valuation Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-5753 was published Jul 23, 2025

The YANewsflash plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... Moderate Unreviewed

CVE-2025-6054 was published Jul 23, 2025

The Featured Image Plus – Quick & Bulk Edit with Unsplash plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-5818 was published Jul 23, 2025

A potential command injection vulnerability has been identified in the Poly Clariti Manager for... Moderate Unreviewed

CVE-2025-43020 was published Jul 23, 2025

A potential reflected cross-site scripting vulnerability has been identified in the Poly Clariti... Moderate Unreviewed

CVE-2025-43484 was published Jul 23, 2025

A potential privilege escalation through Sudo vulnerability has been identified in the Poly... Moderate Unreviewed

CVE-2025-43487 was published Jul 23, 2025

A potential security vulnerability has been identified in the Poly Clariti Manager for versions... Moderate Unreviewed

CVE-2025-43485 was published Jul 23, 2025

A potential security vulnerability has been identified in the Poly Clariti Manager for versions... Moderate Unreviewed

CVE-2025-43483 was published Jul 23, 2025

A potential security vulnerability has been identified in the Poly Clariti Manager for versions... Moderate Unreviewed

CVE-2025-43021 was published Jul 23, 2025

A potential stored cross-site scripting vulnerability has been identified in the Poly Clariti... Moderate Unreviewed

CVE-2025-43486 was published Jul 23, 2025

Ollama vulnerable to Cross-Domain Token Exposure Moderate

CVE-2025-51471 was published for github.com/ollama/ollama (Go) Jul 22, 2025

Previous 1…389…400 Next

Previous 1 2 … 387 388 389 390 391 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

145,558 advisories