GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,198
Composer 4,343
Erlang 31
GitHub Actions 22
Go 2,107
Maven 5,283
npm 3,764
NuGet 679
pip 3,452
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,251

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,356 advisories

Filter by severity

Sort by

Least recently updated

The WooCommerce Support Ticket System plugin for WordPress is vulnerable to unauthorized access... Moderate Unreviewed

CVE-2024-13775 was published Feb 1, 2025

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for... Moderate Unreviewed

CVE-2024-13371 was published Feb 1, 2025

The Custom Related Posts plugin for WordPress is vulnerable to unauthorized access & modification... Moderate Unreviewed

CVE-2024-12825 was published Feb 1, 2025

The MagicForm plugin for WordPress is vulnerable to access and modification of data due to a... Moderate Unreviewed

CVE-2025-0939 was published Feb 1, 2025

The AnimateGL Animations for WordPress – Elementor & Gutenberg Blocks Animations plugin for... Moderate Unreviewed

CVE-2024-12620 was published Feb 1, 2025

The RapidLoad – Optimize Web Vitals Automatically plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13651 was published Feb 1, 2025

The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-12171 was published Feb 1, 2025

The WordPress Contact Forms by Cimatti plugin for WordPress is vulnerable to unauthorized access... Moderate Unreviewed

CVE-2024-12184 was published Feb 1, 2025

SimpleHelp remote support software v5.5.7 and before has a vulnerability that allows low... High Unreviewed

CVE-2024-57726 was published Jan 16, 2025

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web... Moderate Unreviewed

CVE-2025-21514 was published Jan 21, 2025

Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware (component: Core). ... Moderate Unreviewed

CVE-2025-21498 was published Jan 21, 2025

This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed

CVE-2024-23962 was published Jan 31, 2025

Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue... Moderate Unreviewed

CVE-2024-13312 was published Jan 9, 2025

The Drag and Drop Multiple File Upload – Contact Form 7 plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-12267 was published Jan 31, 2025

The Simple Job Board plugin for WordPress is vulnerable to unauthorized access of data| due to... Moderate Unreviewed

CVE-2024-0593 was published Feb 21, 2024

In JetBrains YouTrack before 2024.3.51866 unauthenticated database backup download was possible... Low Unreviewed

CVE-2024-54153 was published Dec 4, 2024

The Relevanssi – A Better Search plugin for WordPress is vulnerable to unauthorized access of... Moderate Unreviewed

CVE-2024-1380 was published Mar 13, 2024

In JetBrains YouTrack before 2024.3.51866 improper access control allowed listing of project... Low Unreviewed

CVE-2024-54155 was published Dec 4, 2024

Missing Authorization vulnerability in MagePeople Team Booking and Rental Manager allows... Moderate Unreviewed

CVE-2025-22720 was published Jan 31, 2025

The Custom Login Page Styler – Limit Login Attempts – Restrict Content With Login – Redirect... Moderate Unreviewed

CVE-2024-13530 was published Jan 31, 2025

Missing Authorization vulnerability in mgplugin EMI Calculator allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-22265 was published Jan 31, 2025

The Contact Form and Calls To Action by vcita plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2024-13717 was published Jan 31, 2025

The Ni Sales Commission For WooCommerce plugin for WordPress is vulnerable to unauthorized access... Moderate Unreviewed

CVE-2024-13424 was published Jan 31, 2025

The Food Menu – Restaurant Menu & Online Ordering for WooCommerce plugin for WordPress is... Moderate Unreviewed

CVE-2024-13415 was published Jan 31, 2025

The Live2DWebCanvas plugin for WordPress is vulnerable to arbitrary file deletion due to... High Unreviewed

CVE-2024-13767 was published Jan 31, 2025

Previous 1 2 3 4 5 … 134 135 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,356 advisories