GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,687
Composer 5,022
Erlang 39
GitHub Actions 38
Go 2,656
Maven 6,114
npm 4,284
NuGet 760
pip 4,069
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,593

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,819 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The WP Login and Register using JWT plugin for WordPress is vulnerable to unauthorized access of... Moderate Unreviewed

CVE-2025-12822 was published Nov 19, 2025

The Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings plugin for... Moderate Unreviewed

CVE-2025-12174 was published Nov 19, 2025

The WSChat – WordPress Live Chat plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2025-12751 was published Nov 19, 2025

XWiki view file macro: User can view content of office file without view rights on the attachment Moderate

CVE-2025-65089 was published for com.xwiki.pro:xwiki-pro-macros-ui (Maven) Nov 18, 2025

The WP Duplicate Page plugin for WordPress is vulnerable to Missing Authorization in all versions... Moderate Unreviewed

CVE-2025-12481 was published Nov 18, 2025

The Cryptocurrency Payment Gateway for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-12392 was published Nov 18, 2025

The wModes – Catalog Mode, Product Pricing, Enquiry Forms & Promotions plugin for WordPress is... Moderate Unreviewed

CVE-2025-12639 was published Nov 18, 2025

The Broken Link Checker by AIOSEO – Easily Fix/Monitor Internal and External links plugin for... Moderate Unreviewed

CVE-2025-11734 was published Nov 18, 2025

The Restrictions for BuddyPress plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2025-12391 was published Nov 18, 2025

The ACF Flexible Layouts Manager plugin for WordPress is vulnerable to unauthorized modification... Moderate Unreviewed

CVE-2025-12937 was published Nov 18, 2025

The Permalinks Cascade plugin for WordPress is vulnerable to Missing Authorization in all... Moderate Unreviewed

CVE-2025-12372 was published Nov 18, 2025

The Download Panel plugin for WordPress is vulnerable to unauthorized settings modification due... Moderate Unreviewed

CVE-2025-12961 was published Nov 18, 2025

The Contest Gallery plugin for WordPress is vulnerable to authorization bypass in all versions up... Moderate Unreviewed

CVE-2025-12849 was published Nov 15, 2025

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.2 before 18.3.6, 18... Moderate Unreviewed

CVE-2025-6171 was published Nov 15, 2025

The All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic plugin for... Moderate Unreviewed

CVE-2025-12847 was published Nov 15, 2025

The Gallery Plugin for WordPress – Envira Photo Gallery plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-12377 was published Nov 13, 2025

Missing Authorization vulnerability in EDGARROJAS WooCommerce PDF Invoice Builder woo-pdf-invoice... Moderate Unreviewed

CVE-2025-64269 was published Nov 13, 2025

Missing Authorization vulnerability in codepeople Contact Form Email contact-form-to-email allows... Moderate Unreviewed

CVE-2025-64369 was published Nov 13, 2025

Missing Authorization vulnerability in YOP YOP Poll yop-poll allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-64370 was published Nov 13, 2025

Missing Authorization vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack... Moderate Unreviewed

CVE-2025-64379 was published Nov 13, 2025

Missing Authorization vulnerability in WebToffee Order Export & Order Import for WooCommerce... Moderate Unreviewed

CVE-2025-64382 was published Nov 13, 2025

Missing Authorization vulnerability in Ays Pro Survey Maker survey-maker allows Exploiting... Moderate Unreviewed

CVE-2025-64276 was published Nov 13, 2025

Missing Authorization vulnerability in QuantumCloud ChatBot chatbot allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-64277 was published Nov 13, 2025

Missing Authorization vulnerability in codepeople Appointment Booking Calendar appointment... Moderate Unreviewed

CVE-2025-64261 was published Nov 13, 2025

Missing Authorization vulnerability in PluginEver WP Content Pilot wp-content-pilot allows... Moderate Unreviewed

CVE-2025-64263 was published Nov 13, 2025

Previous1…153 Next

Previous 1 2 3 4 5 … 152 153 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,819 advisories