Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

892 advisories

Loading
A vulnerability has been found in Control iD RH iD 25.2.25.0 and classified as problematic. This... Moderate Unreviewed
CVE-2025-2125 was published Mar 9, 2025
The FooGallery – Responsive Photo Gallery, Image Viewer, Justified, Masonry & Carousel plugin for... Moderate Unreviewed
CVE-2024-12114 was published Mar 8, 2025
ServiceNow has addressed an authorization bypass vulnerability that was identified in the... High Unreviewed
CVE-2025-0337 was published Mar 6, 2025
IDOR Vulnerabilities in ZITADEL's Admin API that Primarily Impact LDAP Configurations Critical
CVE-2025-27507 was published for github.com/zitadel/zitadel (Go) Mar 4, 2025
amit-laish livio-a
fforootd adlerhurst
Security Update for the OPC UA .NET Standard Stack Moderate
CVE-2024-42512 was published for OPCFoundation.NetStandard.Opc.Ua.Core (NuGet) Mar 3, 2025
TomTervoort AnonySE26
Authorization Bypass Through User-Controlled Key vulnerability in Proliz Software OBS allows... Moderate Unreviewed
CVE-2024-8261 was published Mar 3, 2025
A vulnerability in GitLab-EE affecting all versions from 16.2 prior to 17.7.6, 17.8 prior to 17.8... Moderate Unreviewed
CVE-2024-10925 was published Mar 3, 2025
An Insecure Direct Object References (IDOR) in the component /getStudemtAllDetailsById?studentId... Moderate Unreviewed
CVE-2025-25952 was published Mar 3, 2025
The Ultra Addons Lite for Elementor plugin for WordPress is vulnerable to Information Exposure in... Moderate Unreviewed
CVE-2024-13832 was published Feb 28, 2025
SunGrow iSolarCloud before the October 31, 2024 remediation is vulnerable to insecure direct... Critical Unreviewed
CVE-2024-50693 was published Feb 26, 2025
SunGrow iSolarCloud before the October 31, 2024 remediation, is vulnerable to insecure direct... Critical Unreviewed
CVE-2024-50685 was published Feb 26, 2025
SunGrow iSolarCloud before the October 31, 2024 remediation is vulnerable to insecure direct... Critical Unreviewed
CVE-2024-50689 was published Feb 26, 2025
SunGrow iSolarCloud before the October 31, 2024 remediation is vulnerable to insecure direct... Critical Unreviewed
CVE-2024-50686 was published Feb 26, 2025
SunGrow iSolarCloud before the October 31, 2024 remediation is vulnerable to insecure direct... Critical Unreviewed
CVE-2024-50687 was published Feb 26, 2025
Authorization Bypass Through User-Controlled Key vulnerability in Ninja Team Filebird allows... Low Unreviewed
CVE-2025-26977 was published Feb 25, 2025
Authorization Bypass Through User-Controlled Key vulnerability in ameliabooking Amelia allows... Moderate Unreviewed
CVE-2025-26965 was published Feb 25, 2025
A vulnerability, which was classified as problematic, has been found in SourceCodester Best... Moderate Unreviewed
CVE-2025-1607 was published Feb 24, 2025
The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for... Moderate Unreviewed
CVE-2024-13873 was published Feb 22, 2025
Rapid Response Monitoring My Security Account App utilizes an API that could be exploited by an... High Unreviewed
CVE-2025-0352 was published Feb 20, 2025
The Prime Addons for Elementor plugin for WordPress is vulnerable to Insecure Direct Object... Moderate Unreviewed
CVE-2024-13855 was published Feb 20, 2025
The PeproDev Ultimate Invoice plugin for WordPress is vulnerable to Insecure Direct Object... Moderate Unreviewed
CVE-2024-13719 was published Feb 19, 2025
The Education Addon for Elementor plugin for WordPress is vulnerable to Insecure Direct Object... Moderate Unreviewed
CVE-2024-13854 was published Feb 19, 2025
The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-13740 was published Feb 18, 2025
StrongKey FIDO Server before 4.15.1 treats a non-discoverable (namedcredential) flow as a... High Unreviewed
CVE-2025-26788 was published Feb 14, 2025
The Return Refund and Exchange For WooCommerce – Return Management System, RMA Exchange, Wallet... Moderate Unreviewed
CVE-2024-13692 was published Feb 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database