Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,750
Maven
5,000+
npm
4,353
NuGet
765
pip
4,114
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

145,515 advisories

Loading
The Addon Elements for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2025-12537 was published Dec 14, 2025
In Sequoia before 2.1.0, aes_key_unwrap panics if passed a ciphertext that is too short. A remote... Moderate Unreviewed
CVE-2025-67897 was published Dec 14, 2025
A security flaw has been discovered in code-projects Student File Management System 1.0. This... Moderate Unreviewed
CVE-2025-14646 was published Dec 14, 2025
A vulnerability was identified in code-projects Student File Management System 1.0. This affects... Moderate Unreviewed
CVE-2025-14645 was published Dec 14, 2025
A vulnerability was determined in itsourcecode Student Management System 1.0. The impacted... Moderate Unreviewed
CVE-2025-14644 was published Dec 14, 2025
A vulnerability was found in code-projects Simple Attendance Record System 2.0. The affected... Moderate Unreviewed
CVE-2025-14643 was published Dec 14, 2025
Exim before 4.99.1 allows remote heap corruption that will be further described on 2025-12-18. Moderate Unreviewed
CVE-2025-67896 was published Dec 14, 2025
A flaw has been found in code-projects Computer Laboratory System 1.0. This issue affects some... Moderate Unreviewed
CVE-2025-14641 was published Dec 14, 2025
A vulnerability has been found in code-projects Computer Laboratory System 1.0. Impacted is an... Moderate Unreviewed
CVE-2025-14642 was published Dec 14, 2025
A flaw has been found in code-projects Student File Management System 1.0. The affected element... Moderate Unreviewed
CVE-2025-14640 was published Dec 14, 2025
A security vulnerability has been detected in itsourcecode Online Pet Shop Management System 1.0.... Moderate Unreviewed
CVE-2025-14638 was published Dec 14, 2025
A vulnerability was detected in itsourcecode Student Management System 1.0. Impacted is an... Moderate Unreviewed
CVE-2025-14639 was published Dec 14, 2025
A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function... Moderate Unreviewed
CVE-2025-14636 was published Dec 13, 2025
A weakness has been identified in itsourcecode Online Pet Shop Management System 1.0. This... Moderate Unreviewed
CVE-2025-14637 was published Dec 13, 2025
A vulnerability was determined in code-projects Student File Management System 1.0. Affected by... Moderate Unreviewed
CVE-2025-14620 was published Dec 13, 2025
A vulnerability was detected in OFFIS DCMTK up to 3.6.9. Affected by this issue is the function... Moderate Unreviewed
CVE-2025-14607 was published Dec 13, 2025
A vulnerability was identified in code-projects Student File Management System 1.0. This affects... Moderate Unreviewed
CVE-2025-14621 was published Dec 13, 2025
A security flaw has been discovered in code-projects Student File Management System 1.0. This... Moderate Unreviewed
CVE-2025-14622 was published Dec 13, 2025
A weakness has been identified in code-projects Student File Management System 1.0. This issue... Moderate Unreviewed
CVE-2025-14623 was published Dec 13, 2025
The Livemesh SiteOrigin Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2025-8780 was published Dec 13, 2025
The All-in-One Addons for Elementor – WidgetKit plugin for WordPress is vulnerable to Stored... Moderate Unreviewed
CVE-2025-8779 was published Dec 13, 2025
The King Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2025-7960 was published Dec 13, 2025
The WPS Visitor Counter Plugin WordPress plugin through 1.4.8 does not escape the $_SERVER[... Moderate Unreviewed
CVE-2025-9116 was published Dec 13, 2025
The TI WooCommerce Wishlist plugin for WordPress is vulnerable to HTML Injection in all versions... Moderate Unreviewed
CVE-2025-9207 was published Dec 13, 2025
The YITH WooCommerce Quick View plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2025-8617 was published Dec 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database