Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,354
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,779
NuGet
681
pip
3,460
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

28,178 advisories

Loading
The DWT - Directory & Listing WordPress Theme is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2025-0169 was published Feb 9, 2025
The Simple add pages or posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-13850 was published Feb 8, 2025
A vulnerability classified as problematic has been found in newbee-mall 1.0. Affected is the... Moderate Unreviewed
CVE-2025-1114 was published Feb 8, 2025
A reflected Cross-Site Scripting (XSS) vulnerability exists in /webscan/sqlmap/index.html in... Moderate Unreviewed
CVE-2024-57278 was published Feb 8, 2025
A reflected Cross-Site Scripting (XSS) vulnerability has been identified in the LDAP User Manager... Moderate Unreviewed
CVE-2024-57279 was published Feb 8, 2025
A vulnerability was found in SiberianCMS 4.20.6. It has been rated as problematic. Affected by... Moderate Unreviewed
CVE-2025-1105 was published Feb 7, 2025
The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is... Moderate Unreviewed
CVE-2024-10785 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25117 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25136 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25082 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25080 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25091 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25097 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25079 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25085 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25096 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25095 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25094 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25078 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25098 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25105 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25073 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25077 was published Feb 7, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-25076 was published Feb 7, 2025
A vulnerability, which was classified as problematic, was found in Animati PACS up to 1.24.12.09... Moderate Unreviewed
CVE-2025-1085 was published Feb 7, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database