GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,198
Composer 4,343
Erlang 31
GitHub Actions 22
Go 2,107
Maven 5,283
npm 3,764
NuGet 679
pip 3,452
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,247

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,782 advisories

Filter by severity

Sort by

Least recently updated

IBM App Connect Enterprise Certified Container 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1... Moderate Unreviewed

CVE-2022-43916 was published Jan 30, 2025

Missing authorization in Microsoft Account allows an unauthorized attacker to elevate privileges... High Unreviewed

CVE-2025-21396 was published Jan 30, 2025

In shouldSkipForInitialSUW of AdvancedPowerUsageDetail.java, there is a possible way to bypass... High Unreviewed

CVE-2024-40677 was published Jan 28, 2025

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.2, watchOS... Critical Unreviewed

CVE-2024-54530 was published Jan 28, 2025

Missing Authorization vulnerability in Sprout Invoices Client Invoicing by Sprout Invoices allows... Moderate Unreviewed

CVE-2025-24606 was published Jan 27, 2025

Missing Authorization vulnerability in UkrSolution Print Barcode Labels for your WooCommerce... Moderate Unreviewed

CVE-2025-24603 was published Jan 27, 2025

Missing Authorization vulnerability in David F. Carr RSVPMarker . This issue affects RSVPMarker :... Moderate Unreviewed

CVE-2025-24600 was published Jan 27, 2025

Missing Authorization vulnerability in Haptiq picu – Online Photo Proofing Gallery allows... Moderate Unreviewed

CVE-2025-24590 was published Jan 27, 2025

Missing Authorization vulnerability in CodeSolz Better Find and Replace allows Privilege... High Unreviewed

CVE-2025-24734 was published Jan 27, 2025

Missing Authorization vulnerability in NotFound Bridge Core. This issue affects Bridge Core: from... Moderate Unreviewed

CVE-2025-24744 was published Jan 27, 2025

Missing Authorization vulnerability in Houzez.co Houzez. This issue affects Houzez: from n/a... Moderate Unreviewed

CVE-2025-24747 was published Jan 27, 2025

Missing Authorization vulnerability in Rometheme RomethemeKit For Elementor. This issue affects... Moderate Unreviewed

CVE-2025-24743 was published Jan 27, 2025

Missing Authorization vulnerability in NotFound LearnDash LMS allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-24662 was published Jan 27, 2025

Missing Authorization vulnerability in NotFound Admin and Site Enhancements (ASE) Pro allows... Moderate Unreviewed

CVE-2025-24653 was published Jan 27, 2025

Missing Authorization vulnerability in BdThemes Ultimate Store Kit Elementor Addons allows... Moderate Unreviewed

CVE-2025-24584 was published Jan 27, 2025

Missing Authorization vulnerability in Blokhaus Minterpress allows Accessing Functionality Not... Moderate Unreviewed

CVE-2025-23529 was published Jan 27, 2025

Missing Authorization vulnerability in Saul Morales Pacheco Donate visa allows Stored XSS. This... Moderate Unreviewed

CVE-2025-23656 was published Jan 27, 2025

Missing Authorization vulnerability in Benjamin Piwowarski PAPERCITE allows Exploiting... Moderate Unreviewed

CVE-2025-23849 was published Jan 27, 2025

Missing Authorization vulnerability in Marian Kanev Cab fare calculator allows Stored XSS. This... High Unreviewed

CVE-2025-23982 was published Jan 27, 2025

Missing Authorization vulnerability in Houzez.co Houzez. This issue affects Houzez: from n/a... Moderate Unreviewed

CVE-2025-24754 was published Jan 27, 2025

The Zox News theme for WordPress is vulnerable to unauthorized modification of data that can lead... High Unreviewed

CVE-2024-11936 was published Jan 26, 2025

The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to... High Unreviewed

CVE-2024-10574 was published Jan 26, 2025

The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for... Moderate Unreviewed

CVE-2024-12113 was published Jan 25, 2025

The GoHero Store Customizer for WooCommerce plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-12826 was published Jan 25, 2025

The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for... Moderate Unreviewed

CVE-2024-13370 was published Jan 25, 2025

Previous 1 2 3 4 5 … 151 152 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,782 advisories