GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,816
Composer 4,869
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,920
npm 4,119
NuGet 735
pip 3,941
Pub 12
RubyGems 945
Rust 1,018
Swift 39

Unreviewed advisories

All unreviewed 268,918

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

126,533 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A Server-Side Request Forgery (SSRF) vulnerability has been identified in the embedded web server... Moderate Unreviewed

CVE-2025-9269 was published Sep 9, 2025

Missing Authorization vulnerability in WP Swings PDF Generator for WordPress allows Exploiting... Moderate Unreviewed

CVE-2025-58978 was published Sep 9, 2025

Missing Authorization vulnerability in BerqWP BerqWP allows Exploiting Incorrectly Configured... Moderate Unreviewed

CVE-2025-58979 was published Sep 9, 2025

Missing Authorization vulnerability in Equalize Digital Accessibility Checker by Equalize Digital... Moderate Unreviewed

CVE-2025-58981 was published Sep 9, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58983 was published Sep 9, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58985 was published Sep 9, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58984 was published Sep 9, 2025

Server-Side Request Forgery (SSRF) vulnerability in Rhys Wynne WP eBay Product Feeds allows... Moderate Unreviewed

CVE-2025-58977 was published Sep 9, 2025

Missing Authorization vulnerability in recorp Export WP Page to Static HTML/CSS allows Accessing... Moderate Unreviewed

CVE-2025-58980 was published Sep 9, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58982 was published Sep 9, 2025

Missing Authorization vulnerability in frenify Categorify allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-59005 was published Sep 9, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58987 was published Sep 9, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58989 was published Sep 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Helmut Wandl Advanced Settings allows Cross... Moderate Unreviewed

CVE-2025-58975 was published Sep 9, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58988 was published Sep 9, 2025

Missing Authorization vulnerability in Equalize Digital Accessibility Checker by Equalize Digital... Moderate Unreviewed

CVE-2025-58976 was published Sep 9, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58990 was published Sep 9, 2025

A stored cross-site scripting (XSS) vulnerability in the HTTP Proxy field within the Datacenter... Moderate Unreviewed

CVE-2025-57538 was published Sep 9, 2025

A stored cross-site scripting (XSS) vulnerability exists in the WebAuthn Relying Party field... Moderate Unreviewed

CVE-2025-57540 was published Sep 9, 2025

A stored cross-site scripting (XSS) vulnerability in the U2F Origin field of the Datacenter... Moderate Unreviewed

CVE-2025-57539 was published Sep 9, 2025

A vulnerability was detected in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.5... Moderate Unreviewed

CVE-2025-5005 was published Sep 9, 2025

Concurrent execution using shared resource with improper synchronization ('race condition') in... Moderate Unreviewed

CVE-2025-55226 was published Sep 9, 2025

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized... Moderate Unreviewed

CVE-2025-55225 was published Sep 9, 2025

Protection mechanism failure in Windows MapUrlToZone allows an unauthorized attacker to bypass a... Moderate Unreviewed

CVE-2025-54917 was published Sep 9, 2025

Access of resource using incompatible type ('type confusion') in Windows Defender Firewall... Moderate Unreviewed

CVE-2025-54915 was published Sep 9, 2025

Previous 1…5…400 Next

Previous 1 2 3 4 5 6 7 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

126,533 advisories