Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,121
NuGet
735
pip
3,942
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

137,125 advisories

Loading
Cross-Site Request Forgery (CSRF) vulnerability in Labinator Labinator Content Types Duplicator... Moderate Unreviewed
CVE-2025-31809 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31811 was published Apr 1, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in formsintegrations... Moderate Unreviewed
CVE-2025-31821 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31817 was published Apr 1, 2025
Missing Authorization vulnerability in pietro Mobile App Canvas allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-31816 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31815 was published Apr 1, 2025
Missing Authorization vulnerability in Ashish Ajani WP Simple HTML Sitemap allows Exploiting... Moderate Unreviewed
CVE-2025-31822 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31823 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31806 was published Apr 1, 2025
Missing Authorization vulnerability in webdevstudios Automatic Featured Images from Videos allows... Moderate Unreviewed
CVE-2025-31820 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31797 was published Apr 1, 2025
Missing Authorization vulnerability in publitio Publitio allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-31798 was published Apr 1, 2025
Missing Authorization vulnerability in ahmadshyk Gift Cards for WooCommerce allows Exploiting... Moderate Unreviewed
CVE-2025-31781 was published Apr 1, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Clearbit Clearbit Reveal allows Cross Site... Moderate Unreviewed
CVE-2025-31785 was published Apr 1, 2025
Missing Authorization vulnerability in Travis Simple Icons allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-31786 was published Apr 1, 2025
Missing Authorization vulnerability in Brady Vercher Cue allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-31787 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31790 was published Apr 1, 2025
Insertion of Sensitive Information into Log File vulnerability in smackcoders AIO Performance... Moderate Unreviewed
CVE-2025-31788 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31793 was published Apr 1, 2025
Server-Side Request Forgery (SSRF) vulnerability in TheInnovs Team ElementsCSS Addons for... Moderate Unreviewed
CVE-2025-31796 was published Apr 1, 2025
Missing Authorization vulnerability in WebProtect.ai Astra Security Suite allows Exploiting... Moderate Unreviewed
CVE-2025-31774 was published Apr 1, 2025
Missing Authorization vulnerability in Oliver Boyers Pin Generator allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-31791 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31792 was published Apr 1, 2025
Missing Authorization vulnerability in publitio Publitio allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-31799 was published Apr 1, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31783 was published Apr 1, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database