Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

137,301 advisories

Loading
Cross-Site Request Forgery (CSRF) vulnerability in designinvento DirectoryPress allows Cross Site... Moderate Unreviewed
CVE-2025-32249 was published Apr 4, 2025
Cross-Site Request Forgery (CSRF) vulnerability in ABCdatos AI Content Creator allows Cross Site... Moderate Unreviewed
CVE-2025-32247 was published Apr 4, 2025
Cross-Site Request Forgery (CSRF) vulnerability in SwiftXR SwiftXR (3D/AR/VR) Viewer allows Cross... Moderate Unreviewed
CVE-2025-32248 was published Apr 4, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in J.... Moderate Unreviewed
CVE-2025-32251 was published Apr 4, 2025
Missing Authorization vulnerability in blackandwhitedigital WP Genealogy – Your Family History... Moderate Unreviewed
CVE-2025-32252 was published Apr 4, 2025
Cross-Site Request Forgery (CSRF) vulnerability in rollbar Rollbar allows Cross Site Request... Moderate Unreviewed
CVE-2025-32250 was published Apr 4, 2025
Missing Authorization vulnerability in Iqonic Design WPBookit allows Accessing Functionality Not... Moderate Unreviewed
CVE-2025-32254 was published Apr 4, 2025
Missing Authorization vulnerability in ComMotion Course Booking System allows Accessing... Moderate Unreviewed
CVE-2025-32253 was published Apr 4, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed
CVE-2025-32255 was published Apr 4, 2025
Missing Authorization vulnerability in devsoftbaltic SurveyJS allows Accessing Functionality Not... Moderate Unreviewed
CVE-2025-32256 was published Apr 4, 2025
Missing Authorization vulnerability in WP Chill Revive.so – Bulk Rewrite and Republish Blog Posts... Moderate Unreviewed
CVE-2025-32233 was published Apr 4, 2025
Missing Authorization vulnerability in Bookingor Bookingor allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-32231 was published Apr 4, 2025
Missing Authorization vulnerability in Stylemix MasterStudy LMS allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-32237 was published Apr 4, 2025
Missing Authorization vulnerability in ERA404 StaffList allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-32232 was published Apr 4, 2025
Missing Authorization vulnerability in Bowo Variable Inspector allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-32229 was published Apr 4, 2025
Missing Authorization vulnerability in sonaar MP3 Audio Player for Music, Radio & Podcast by... Moderate Unreviewed
CVE-2025-32235 was published Apr 4, 2025
Generation of Error Message Containing Sensitive Information vulnerability in vcita Online... Moderate Unreviewed
CVE-2025-32238 was published Apr 4, 2025
Missing Authorization vulnerability in aleswebs AdMail – Multilingual Back in-Stock Notifier for... Moderate Unreviewed
CVE-2025-32234 was published Apr 4, 2025
Missing Authorization vulnerability in Joao Romao Social Share Buttons & Analytics Plugin –... Moderate Unreviewed
CVE-2025-32239 was published Apr 4, 2025
Cross-Site Request Forgery (CSRF) vulnerability in CleverReach® Official CleverReach Plugin for... Moderate Unreviewed
CVE-2025-32241 was published Apr 4, 2025
Missing Authorization vulnerability in WP Messiah Ai Image Alt Text Generator for WP allows... Moderate Unreviewed
CVE-2025-32217 was published Apr 4, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-32207 was published Apr 4, 2025
Missing Authorization vulnerability in Dimitri Grassi Salon booking system allows Exploiting... Moderate Unreviewed
CVE-2025-32220 was published Apr 4, 2025
Missing Authorization vulnerability in RealMag777 TableOn – WordPress Posts Table Filterable... Moderate Unreviewed
CVE-2025-32218 was published Apr 4, 2025
Missing Authorization vulnerability in shivammani Privyr CRM allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-32224 was published Apr 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database