GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,151

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

126,633 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The ELEX WooCommerce Google Shopping (Google Product Feed) plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-10046 was published Sep 6, 2025

The Smart Table Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-9126 was published Sep 6, 2025

The StreamWeasels Kick Integration plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-9442 was published Sep 6, 2025

The Admin Menu Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2025-9493 was published Sep 6, 2025

The aThemes Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-8149 was published Sep 6, 2025

The Recent Posts Widget Extended plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-6757 was published Sep 6, 2025

The Cloud SAML SSO plugin for WordPress is vulnerable to Identity Provider Deletion due to a... Moderate Unreviewed

CVE-2025-7045 was published Sep 6, 2025

The SKT Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-8564 was published Sep 6, 2025

The Content Views plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-8722 was published Sep 6, 2025

The Html Social share buttons plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-9849 was published Sep 6, 2025

The Optio Dentistry plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-9853 was published Sep 6, 2025

The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-8360 was published Sep 6, 2025

The User Registration & Membership plugin for WordPress is vulnerable to SQL Injection via the 's... Moderate Unreviewed

CVE-2025-9085 was published Sep 6, 2025

The REHub - Price Comparison, Multi Vendor Marketplace Wordpress Theme theme for WordPress is... Moderate Unreviewed

CVE-2025-7368 was published Sep 6, 2025

The UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin... Moderate Unreviewed

CVE-2025-10003 was published Sep 6, 2025

The Easy Social Feed – Social Photos Gallery – Post Feed – Like Box plugin for WordPress is... Moderate Unreviewed

CVE-2025-6067 was published Sep 6, 2025

A vulnerability was determined in itsourcecode POS Point of Sale System 1.0. Affected by this... Moderate Unreviewed

CVE-2025-10027 was published Sep 6, 2025

MongoDB Server may allow upsert operations retried within a transaction to violate unique index... Moderate Unreviewed

CVE-2025-10060 was published Sep 5, 2025

A flaw was found in Keycloak. Keycloak’s account console and other pages accept arbitrary text in... Moderate Unreviewed

CVE-2025-10044 was published Sep 5, 2025

An improper setting of the lsid field on any sharded query can cause a crash in MongoDB routers.... Moderate Unreviewed

CVE-2025-10059 was published Sep 5, 2025

A vulnerability was found in itsourcecode POS Point of Sale System 1.0. Affected by this... Moderate Unreviewed

CVE-2025-10026 was published Sep 5, 2025

An authorized user can cause a crash in the MongoDB Server through a specially crafted $group... Moderate Unreviewed

CVE-2025-10061 was published Sep 5, 2025

Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to... Moderate Unreviewed

CVE-2025-53791 was published Sep 5, 2025

A vulnerability has been found in PHPGurukul Online Course Registration 3.1. Affected is an... Moderate Unreviewed

CVE-2025-10025 was published Sep 5, 2025

The Biagiotti Core plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-9057 was published Sep 5, 2025

Previous 1…17…400 Next

Previous 1 2 … 15 16 17 18 19 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

126,633 advisories