Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,942
Pub
12
RubyGems
945
Rust
1,019
Swift
39
Unreviewed advisories
All unreviewed
5,000+

137,138 advisories

Loading
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31838 was published Apr 1, 2025
Insertion of Sensitive Information Into Sent Data vulnerability in viralloops Viral Loops WP... Moderate Unreviewed
CVE-2025-31842 was published Apr 1, 2025
Missing Authorization vulnerability in Jeroen Schmit Theater for WordPress allows Exploiting... Moderate Unreviewed
CVE-2025-31846 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31849 was published Apr 1, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Rohit Choudhary Theme Duplicator allows Cross... Moderate Unreviewed
CVE-2025-31845 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31850 was published Apr 1, 2025
Cross-Site Request Forgery (CSRF) vulnerability in N-Media Bulk Product Sync allows Cross Site... Moderate Unreviewed
CVE-2025-31852 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31847 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31855 was published Apr 1, 2025
Missing Authorization vulnerability in brainvireinfo Export All Post Meta allows Accessing... Moderate Unreviewed
CVE-2025-31856 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31860 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31853 was published Apr 1, 2025
Server-Side Request Forgery (SSRF) vulnerability in Wombat Plugins WP Optin Wheel allows Server... Moderate Unreviewed
CVE-2025-31824 was published Apr 1, 2025
Cross-Site Request Forgery (CSRF) vulnerability in alextselegidis Easy!Appointments allows Cross... Moderate Unreviewed
CVE-2025-31828 was published Apr 1, 2025
Missing Authorization vulnerability in Uriahs Victor Printus allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-31830 was published Apr 1, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Beee... Moderate Unreviewed
CVE-2025-31832 was published Apr 1, 2025
Missing Authorization vulnerability in Anzar Ahmed Ni WooCommerce Cost Of Goods allows Exploiting... Moderate Unreviewed
CVE-2025-31826 was published Apr 1, 2025
Missing Authorization vulnerability in matthewrubin Review Manager allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-31836 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31837 was published Apr 1, 2025
Missing Authorization vulnerability in Wilson OpenAI Tools for WordPress & WooCommerce allows... Moderate Unreviewed
CVE-2025-31843 was published Apr 1, 2025
Missing Authorization vulnerability in themeglow JobBoard Job listing allows Exploiting... Moderate Unreviewed
CVE-2025-31834 was published Apr 1, 2025
Cross-Site Request Forgery (CSRF) vulnerability in digireturn DN Footer Contacts allows Cross... Moderate Unreviewed
CVE-2025-31839 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31835 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31829 was published Apr 1, 2025
Missing Authorization vulnerability in Team AtomChat AtomChat allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-31831 was published Apr 1, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database