Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,119
NuGet
735
pip
3,941
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

137,082 advisories

Loading
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31793 was published Apr 1, 2025
Server-Side Request Forgery (SSRF) vulnerability in TheInnovs Team ElementsCSS Addons for... Moderate Unreviewed
CVE-2025-31796 was published Apr 1, 2025
Missing Authorization vulnerability in WebProtect.ai Astra Security Suite allows Exploiting... Moderate Unreviewed
CVE-2025-31774 was published Apr 1, 2025
Missing Authorization vulnerability in Oliver Boyers Pin Generator allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-31791 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31792 was published Apr 1, 2025
Missing Authorization vulnerability in publitio Publitio allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-31799 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31783 was published Apr 1, 2025
Missing Authorization vulnerability in pupunzi mb.YTPlayer allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-31782 was published Apr 1, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Jonathan Daggerhart Query Wrangler allows... Moderate Unreviewed
CVE-2025-31779 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31778 was published Apr 1, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Rudy Susanto Embed Extended – Embed Maps,... Moderate Unreviewed
CVE-2025-31784 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31761 was published Apr 1, 2025
Missing Authorization vulnerability in themeqx GDPR Cookie Notice allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-31765 was published Apr 1, 2025
Cross-Site Request Forgery (CSRF) vulnerability in NiteoThemes CLP – Custom Login Page by... Moderate Unreviewed
CVE-2025-31769 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31767 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31772 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31771 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31770 was published Apr 1, 2025
Missing Authorization vulnerability in cedcommerce Ship Per Product allows Accessing... Moderate Unreviewed
CVE-2025-31773 was published Apr 1, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Aphotrax Uptime Robot Plugin for WordPress... Moderate Unreviewed
CVE-2025-31776 was published Apr 1, 2025
Missing Authorization vulnerability in BeastThemes Clockinator Lite allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-31777 was published Apr 1, 2025
Cross-Site Request Forgery (CSRF) vulnerability in smackcoders Google SEO Pressor Snippet allows... Moderate Unreviewed
CVE-2025-31775 was published Apr 1, 2025
Missing Authorization vulnerability in Andy Stratton Append Content allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-31780 was published Apr 1, 2025
Missing Authorization vulnerability in termel Bulk Fields Editor allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-31752 was published Apr 1, 2025
Cross-Site Request Forgery (CSRF) vulnerability in doit Breaking News WP allows Cross Site... Moderate Unreviewed
CVE-2025-31751 was published Apr 1, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database