Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

126,606 advisories

Loading
The TRMTracker web application is vulnerable to reflected Cross-site scripting attack. The... Moderate Unreviewed
CVE-2025-27633 was published Mar 25, 2025
In JetBrains GoLand before 2025.1 an XXE during debugging was possible Moderate Unreviewed
CVE-2025-29932 was published Mar 25, 2025
A vulnerability exists in RTU500 IEC 60870-4-104 controlled station functionality, that allows an... Moderate Unreviewed
CVE-2024-11499 was published Mar 25, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-26742 was published Mar 25, 2025
A vulnerability exists in the RTU500 web server component that can cause a denial of service to... Moderate Unreviewed
CVE-2024-10037 was published Mar 25, 2025
A Host Header Injection vulnerability in TRMTracker application may allow an attacker by... Moderate Unreviewed
CVE-2025-27632 was published Mar 25, 2025
A vulnerability classified as critical has been found in Open Asset Import Library Assimp 5.4.3.... Moderate Unreviewed
CVE-2025-2756 was published Mar 25, 2025
A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This... Moderate Unreviewed
CVE-2025-2757 was published Mar 25, 2025
The Digital License Manager plugin for WordPress is vulnerable to Reflected Cross-Site Scripting... Moderate Unreviewed
CVE-2025-2635 was published Mar 25, 2025
The WP Compress – Instant Performance & Speed Optimization plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-2109 was published Mar 25, 2025
The Your Simple SVG Support plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2025-2542 was published Mar 25, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Moderate Unreviewed
CVE-2024-53678 was published Mar 25, 2025
A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been declared as... Moderate Unreviewed
CVE-2025-2754 was published Mar 25, 2025
A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been classified as... Moderate Unreviewed
CVE-2025-2753 was published Mar 25, 2025
A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been rated as... Moderate Unreviewed
CVE-2025-2755 was published Mar 25, 2025
The Frndzk Expandable Bottom Bar plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2025-2510 was published Mar 25, 2025
The Alert Box Block – Display notice/alerts in the front end. plugin for WordPress is vulnerable... Moderate Unreviewed
CVE-2024-13731 was published Mar 25, 2025
A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp... Moderate Unreviewed
CVE-2025-2750 was published Mar 25, 2025
A vulnerability was found in Open Asset Import Library Assimp 5.4.3 and classified as problematic... Moderate Unreviewed
CVE-2025-2752 was published Mar 25, 2025
A vulnerability has been found in Open Asset Import Library Assimp 5.4.3 and classified as... Moderate Unreviewed
CVE-2025-2751 was published Mar 25, 2025
A vulnerability classified as critical was found in zhijiantianya ruoyi-vue-pro 2.4.1. This... Moderate Unreviewed
CVE-2025-2742 was published Mar 25, 2025
A vulnerability, which was classified as problematic, has been found in zhijiantianya ruoyi-vue... Moderate Unreviewed
CVE-2025-2743 was published Mar 25, 2025
The Estatebud – Properties & Listings plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed
CVE-2024-13710 was published Mar 25, 2025
A vulnerability classified as critical has been found in PHPGurukul Old Age Home Management... Moderate Unreviewed
CVE-2025-2740 was published Mar 25, 2025
A vulnerability, which was classified as critical, was found in zhijiantianya ruoyi-vue-pro 2.4.1... Moderate Unreviewed
CVE-2025-2744 was published Mar 25, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database