Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

126,913 advisories

Loading
Missing Authorization vulnerability in Bookingor Bookingor allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-32231 was published Apr 4, 2025
Missing Authorization vulnerability in Stylemix MasterStudy LMS allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-32237 was published Apr 4, 2025
Missing Authorization vulnerability in ERA404 StaffList allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-32232 was published Apr 4, 2025
Missing Authorization vulnerability in Bowo Variable Inspector allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-32229 was published Apr 4, 2025
Missing Authorization vulnerability in sonaar MP3 Audio Player for Music, Radio & Podcast by... Moderate Unreviewed
CVE-2025-32235 was published Apr 4, 2025
Generation of Error Message Containing Sensitive Information vulnerability in vcita Online... Moderate Unreviewed
CVE-2025-32238 was published Apr 4, 2025
Missing Authorization vulnerability in aleswebs AdMail – Multilingual Back in-Stock Notifier for... Moderate Unreviewed
CVE-2025-32234 was published Apr 4, 2025
Missing Authorization vulnerability in Joao Romao Social Share Buttons & Analytics Plugin –... Moderate Unreviewed
CVE-2025-32239 was published Apr 4, 2025
Cross-Site Request Forgery (CSRF) vulnerability in CleverReach® Official CleverReach Plugin for... Moderate Unreviewed
CVE-2025-32241 was published Apr 4, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-32207 was published Apr 4, 2025
Missing Authorization vulnerability in RealMag777 TableOn – WordPress Posts Table Filterable... Moderate Unreviewed
CVE-2025-32218 was published Apr 4, 2025
Missing Authorization vulnerability in WP Event Manager WP Event Manager allows Exploiting... Moderate Unreviewed
CVE-2025-32225 was published Apr 4, 2025
Missing Authorization vulnerability in Anzar Ahmed Display product variations dropdown on shop... Moderate Unreviewed
CVE-2025-32226 was published Apr 4, 2025
Missing Authorization vulnerability in Dimitri Grassi Salon booking system allows Exploiting... Moderate Unreviewed
CVE-2025-32220 was published Apr 4, 2025
Missing Authorization vulnerability in Syntactics, Inc. eaSYNC allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-32219 was published Apr 4, 2025
Missing Authorization vulnerability in WP Messiah Ai Image Alt Text Generator for WP allows... Moderate Unreviewed
CVE-2025-32217 was published Apr 4, 2025
Missing Authorization vulnerability in shivammani Privyr CRM allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-32224 was published Apr 4, 2025
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in... Moderate Unreviewed
CVE-2025-32200 was published Apr 4, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-32189 was published Apr 4, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-32190 was published Apr 4, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-32192 was published Apr 4, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-32191 was published Apr 4, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-32193 was published Apr 4, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-32194 was published Apr 4, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-32196 was published Apr 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database