Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

137,147 advisories

Loading
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58811 was published Sep 5, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed
CVE-2025-58797 was published Sep 5, 2025
Cross-Site Request Forgery (CSRF) vulnerability in snagysandor Parallax Scrolling Enllax.js... Moderate Unreviewed
CVE-2025-58831 was published Sep 5, 2025
Cross-Site Request Forgery (CSRF) vulnerability in michalzagdan TrustMate.io – WooCommerce... Moderate Unreviewed
CVE-2025-58802 was published Sep 5, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58814 was published Sep 5, 2025
Cross-Site Request Forgery (CSRF) vulnerability in KCS Responder allows Cross Site Request... Moderate Unreviewed
CVE-2025-58801 was published Sep 5, 2025
Cross-Site Request Forgery (CSRF) vulnerability in brijrajs WooCommerce Single Page Checkout... Moderate Unreviewed
CVE-2025-58804 was published Sep 5, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Steve Truman WP Email Template allows Cross... Moderate Unreviewed
CVE-2025-58800 was published Sep 5, 2025
Cross-Site Request Forgery (CSRF) vulnerability in SwiftNinjaPro Developer Tools Blocker allows... Moderate Unreviewed
CVE-2025-58818 was published Sep 5, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58810 was published Sep 5, 2025
Missing Authorization vulnerability in ThemeArile Consultstreet allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-58813 was published Sep 5, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58808 was published Sep 5, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58820 was published Sep 5, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58796 was published Sep 5, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58812 was published Sep 5, 2025
Missing Authorization vulnerability in DesertThemes SoftMe allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-58817 was published Sep 5, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58805 was published Sep 5, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58836 was published Sep 5, 2025
A weakness has been identified in Portabilis i-Educar up to 2.10. The affected element is an... Moderate Unreviewed
CVE-2025-10011 was published Sep 5, 2025
Missing Authorization vulnerability in jbhovik Ray Enterprise Translation allows Exploiting... Moderate Unreviewed
CVE-2025-58785 was published Sep 5, 2025
Missing Authorization vulnerability in gutentor Gutentor allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-58783 was published Sep 5, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58786 was published Sep 5, 2025
Cross-Site Request Forgery (CSRF) vulnerability in WPKube Authors List allows Cross Site Request... Moderate Unreviewed
CVE-2025-58792 was published Sep 5, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58784 was published Sep 5, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58787 was published Sep 5, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database