GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,816
Composer 4,869
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,920
npm 4,119
NuGet 735
pip 3,941
Pub 12
RubyGems 945
Rust 1,018
Swift 39

Unreviewed advisories

All unreviewed 268,962

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

268,962 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Ultimate Classified Listings plugin for WordPress is vulnerable to Local File Inclusion in... High Unreviewed

CVE-2025-9874 was published Sep 11, 2025

Delta Electronics DIALink has an Directory Traversal Authentication Bypass Vulnerability. Critical Unreviewed

CVE-2025-58321 was published Sep 11, 2025

The Enhanced BibliPlug plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-9855 was published Sep 11, 2025

A Path Traversal vulnerability in the archive extraction component in Google SecOps SOAR Server ... High Unreviewed

CVE-2025-9918 was published Sep 11, 2025

The User Meta – User Profile Builder and User management plugin plugin for WordPress is... High Unreviewed

CVE-2025-9693 was published Sep 11, 2025

The PhpList Subber plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2025-9632 was published Sep 11, 2025

The Evenium plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ... Moderate Unreviewed

CVE-2025-9850 was published Sep 11, 2025

Delta Electronics DIALink has an Directory Traversal Authentication Bypass Vulnerability. High Unreviewed

CVE-2025-58320 was published Sep 11, 2025

The Plugin updates blocker plugin for WordPress is vulnerable to Cross-Site Request Forgery in... Moderate Unreviewed

CVE-2025-9634 was published Sep 11, 2025

The LH Signing plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... Moderate Unreviewed

CVE-2025-9633 was published Sep 11, 2025

The ThemeLoom Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-9861 was published Sep 11, 2025

The Analytics Reduce Bounce Rate plugin for WordPress is vulnerable to Cross-Site Request Forgery... Moderate Unreviewed

CVE-2025-9635 was published Sep 11, 2025

The Mixtape plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ... Moderate Unreviewed

CVE-2025-9860 was published Sep 11, 2025

The azurecurve BBCode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-8398 was published Sep 11, 2025

The Jobify plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘keyword’... Moderate Unreviewed

CVE-2025-8318 was published Sep 11, 2025

The Propovoice: All-in-One Client Management System plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-8422 was published Sep 11, 2025

The My WP Translate plugin for WordPress is vulnerable to unauthorized modification of data that... High Unreviewed

CVE-2025-8425 was published Sep 11, 2025

The Catalog Importer, Scraper & Crawler plugin for WordPress is vulnerable to PHP code injection... High Unreviewed

CVE-2025-8417 was published Sep 11, 2025

The BeyondCart Connector plugin for WordPress is vulnerable to Privilege Escalation due to... Critical Unreviewed

CVE-2025-8570 was published Sep 11, 2025

The WP Easy FAQs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed

CVE-2025-8686 was published Sep 11, 2025

The Responsive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-8215 was published Sep 11, 2025

The Mitfahrgelegenheit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2025-8392 was published Sep 11, 2025

The Digital Events Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-5801 was published Sep 11, 2025

The Salon Booking System, Appointment Scheduling for Salons, Spas & Small Businesses plugin for... Moderate Unreviewed

CVE-2025-8492 was published Sep 11, 2025

The Certifica WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2025-8316 was published Sep 11, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

268,962 advisories