Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

126,641 advisories

Loading
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-30903 was published Mar 27, 2025
Missing Authorization vulnerability in Adnan Analytify allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-30897 was published Mar 27, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Bit Apps Bit Form – Contact... Moderate Unreviewed
CVE-2025-30885 was published Mar 27, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Bit Apps Bit Integrations... Moderate Unreviewed
CVE-2025-30884 was published Mar 27, 2025
Missing Authorization vulnerability in magepeopleteam WpEvently allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-30887 was published Mar 27, 2025
Missing Authorization vulnerability in richplugins Trust.Reviews allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-30883 was published Mar 27, 2025
Missing Authorization vulnerability in ThemeHunk Big Store allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-30881 was published Mar 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in silverplugins217 Custom Fields Account... Moderate Unreviewed
CVE-2025-30888 was published Mar 27, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-30867 was published Mar 27, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-30873 was published Mar 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Nitin Prakash Product Author for WooCommerce... Moderate Unreviewed
CVE-2025-30872 was published Mar 27, 2025
Missing Authorization vulnerability in Jose Specific Content For Mobile allows Exploiting... Moderate Unreviewed
CVE-2025-30874 was published Mar 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in fuzzoid 3DPrint Lite allows Cross Site Request... Moderate Unreviewed
CVE-2025-30865 was published Mar 27, 2025
Missing Authorization vulnerability in Giannis Kipouros Terms & Conditions Per Product allows... Moderate Unreviewed
CVE-2025-30866 was published Mar 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks Integration for Google Sheets and... Moderate Unreviewed
CVE-2025-30863 was published Mar 27, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-30850 was published Mar 27, 2025
Missing Authorization vulnerability in falselight Exchange Rates allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-30864 was published Mar 27, 2025
Missing Authorization vulnerability in Rustaurius Five Star Restaurant Reservations allows... Moderate Unreviewed
CVE-2025-30861 was published Mar 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Saso Serial Codes Generator and Validator with... Moderate Unreviewed
CVE-2025-30854 was published Mar 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in theme funda Custom Field For WP Job Manager... Moderate Unreviewed
CVE-2025-30856 was published Mar 27, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-30860 was published Mar 27, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in ali2woo AliNext allows... Moderate Unreviewed
CVE-2025-30859 was published Mar 27, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-30847 was published Mar 27, 2025
Missing Authorization vulnerability in Tickera Tickera allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-30851 was published Mar 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Bill Minozzi reCAPTCHA for all allows Cross... Moderate Unreviewed
CVE-2025-30862 was published Mar 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database